Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Package in private repo with same name as one from Pypi

See original GitHub issue

I have a package in a private repository with the same name as one from PyPi. The PyPi one, having a higher version number, always get installed.

[[source]]
url = "https://pypi.myrepo.com.br/pypi"
verify_ssl = true
name = "myrepo"

[[source]]
url = "https://pypi.python.org/simple"
verify_ssl = true
name = "pypi"

[packages]
mypkg = ">=0.0.1"

[requires]
python_version = "3.6"

Is there a way to define that a package comes from a certain private repo?

Issue Analytics

State:
Created 5 years ago
Reactions:3
Comments:17 (9 by maintainers)

Top GitHub Comments

15reactions

seglbergcommented, May 11, 2018

This seems to be the same/similar issue I raised in #2102. Personally I think the current syntax is confusing because when I specify mypkg = {version: ">=0.0.1", index="myrepo"} I logically expect it to use myrepo only and disregard pypi.

I totally understand the behavior was changed to match --extra-index-url, but there is a big enough disconnect between pip and pipenv (in my mind) that I expected different behavior. I was excited at the idea of better and more simplified controls over where and how packages are downloaded for our projects.

6reactions

prcastrocommented, May 9, 2018

I would find more intuitive to always search in the source order defined in the Pipfile, unless a specific index is specified on the dependency.

In my case mypkg = {version: ">=0.0.1", index="myrepo"} would only search in myrepo while mypkg = ">=0.0.1" would search first in myrepo and then in pypi, getting the newest version, since this is the source order defined on the Pipfile.

However, maybe one would like to change the source order in a per-dependency basis. Then, one could add an extra_index key, so mypkg = {version: ">=0.0.1", index="pypi", extra_index="myrepo"} would search first on pypi and then on myrepo.