Skip to content

Commit

Permalink
Accommodate for invalid metadata produced by setuptools
Browse files Browse the repository at this point in the history 
See pypa/setuptools#4759.
  • Loading branch information
@dnicolodi
dnicolodi committed Nov 30, 2024
1 parent e40ed88 commit 7fe1489
Show file tree
Hide file tree
Showing 2 changed files with 36 additions and 0 deletions.
25 changes: 25 additions & 0 deletions tests/test_package.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -457,3 +457,28 @@ def test_malformed_from_file(monkeypatch):
def test_package_from_egg():
filename = "tests/fixtures/twine-3.3.0-py3.9.egg"
package_file.PackageFile.from_filename(filename, comment=None)


@pytest.mark.parametrize(
"read_data, filtered",
[
pytest.param(
b"Metadata-Version: 2.1\nName: test-package\nVersion: 1.0.0\nLicense-File: LICENSE",
True,
id="invalid License-File",
),
pytest.param(
b"Metadata-Version: 2.4\nName: test-package\nVersion: 1.0.0\nLicense-File: LICENSE",
False,
id="valid License-File",
),
]
)
def test_setuptools_license_file(read_data, filtered, monkeypatch):
"""Drop License-File metadata entries if Metadata-Version is less than 2.4"""
monkeypatch.setattr(package_file.wheel.Wheel, "read", lambda _: read_data)
filename = "tests/fixtures/twine-1.5.0-py2.py3-none-any.whl"

package = package_file.PackageFile.from_filename(filename, comment=None)
meta = package.metadata_dictionary()
assert filtered != ("license_files" in meta)
11 changes: 11 additions & 0 deletions twine/package.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,7 @@
from typing import Any, Dict, List, NamedTuple, Optional, Sequence, Tuple, Union

from packaging import metadata
from packaging import version
from rich import print

from twine import bdist
Expand Down Expand Up @@ -141,6 +142,16 @@ def from_filename(cls, filename: str, comment: Optional[str]) -> "PackageFile":
for key in unparsed
)
)
# setuptools emits License-File metadata fields while declaring
# Metadata-Version 2.1. This is invalid because the metadata
# specification does not allow to add arbitrary fields, and because
# the semantic implemented by setuptools is different than the one
# described in PEP 639. However, rejecting these packages would be
# too disruptive. Drop License-File metadata entries from the data
# sent to the package index if the declared metadata version is less
# than 2.4.
if version.Version(meta.get("metadata_version", "0")) < version.Version("2.4"):
meta.pop("license_files", None)
try:
metadata.Metadata.from_raw(meta)
except metadata.ExceptionGroup as group:
Expand Down

0 comments on commit 7fe1489

Please sign in to comment.