Declarative prescriptions for resolver¶
The implementation of the recommendation engine allows to declaratively specify pipeline units that should be included in the resolver pipeline without actually implementing any code. The document below describes core mechanics behind creating such “prescriptions” for the resolver.
Note
Check thoth-station/prescriptions repository that provides prescriptions for open-source Python packages.
See also this pull request for a reference on how to implement specific pipeline unit type that extend resolver functionality. A high level overview can be found in the following YouTube video.
One can see prescriptions as enhanced constraints but on the server side. This way constraints can be generalized and applied also for multiple projects for which server-side resolution can provide guidance.
Note
The declarative prescription interface allows to quickly provide pipeline units that assist the resolution process but have limited expressive capabilities. For more sophisticated pipeline units one can still use the programmable interface.
Prescriptions structure¶
Prescriptions are written in a form of YAML files that are maintained in a Git repository. An example of such directory structure can be found at thoth-station/prescriptions.
The repository keeping prescriptions must state a metadata file keeping generic
information for prescriptions. This file is named
_prescription_metadata.yaml and metadata stated in this file are inherited
to all units declared in sub-directories living besides the metadata file.
The content of the metadata file is (an example):
prescription:
name: <name>
release: <release>
Value stated in prescription.name acts as a namespace for prescriptions. If
you use multiple prescriptions, you do not need to worry about any naming
collisions unless you make sure these prescriptions live in a separate
namespace (have different values of prescription.name).
The identifier stated in prescription.release states release information
about prescriptions.
Note
Check the resolution log to see what prescriptions in which versions are used during the resolution process.
Each sub-directory keeps information about prescriptions. It is a convention to put
package specific prescriptions into sub-directories which match package names.
Any generic or package agnostic prescriptions can be placed into
sub-directories prefixed with and underscore (e.g. _generic). Name of the
YAML files are then determined based on the unit semantics written there.
Note
If you are a package maintainer or you would like to follow updates for a specific set of prescriptions, you can add yourself to CODEOWNERS file and follow updates only for a specific sub-directory.
Unit schema¶
Units are stated in units listing in the corresponding YAML file respecting
unit’s base type:
units:
boots: []
pseudonyms: []
sieves: []
steps: []
strides: []
wraps: []
Each unit, regardless of its type, has the following schema:
name: '<unit_name>'
type: '<unit_type>'
should_include:
<should_include_section>
match:
<match_section>
run:
<run_section>
The semantics behind entries:
name¶
Name of the unit that uniquely identifies the unit of the specific type.
All the units created based on prescription live in their own namespace that is
specified by the name of the prescription. This makes sure unit names do
not clash across multiple prescriptions supplied.
type¶
Type of the unit, one of boot, pseudonym, sieve, step,
stride and wrap.
Including a unit - should_include¶
should_include.times¶
Number of times the given unit should be included in the resolution process.
Possible values:
1- the given pipeline unit should be included once in the resolution process if all the criteria for including it match (default)0- the given pipeline unit will not be included in the resolution process - the given pipeline unit is off even thought it is stated in the YAML file
should_include.adviser_pipeline¶
Boolean stating whether the given pipeline pipeline unit will be part of “adviser” pipeline used for computing Thoth’s recommendations.
Possible values:
false- the given pipeline unit will not be part of the resolver pipeline when computing advises (default)true- the given pipeline unit will be part of the resolver pipeline when computing advises
should_include.recommendation_types¶
A list of recommendation types that should be matched if the unit is registered for the adviser resolution pipeline.
Alternatively, the list can be wrapped to a “not” statement which inverts the logic.
If adviser_pipeline is set to false, this configuration option has no
effect.
should_include.dependency_monkey_pipeline¶
Boolean stating whether the given pipeline pipeline unit will base part of Dependency Monkey pipeline used for data acquisition and generation on Amun.
Possible values:
false- the given pipeline unit will not be part of the resolver pipeline used for Dependency Monkey (default)true- the given pipeline unit will be part of the resolver pipeline when running Dependency Monkey
should_include.decision_types¶
A list of decision types that should be matched if the unit is registered for the Dependency Monkey resolution pipeline used for data acquisition on Amun.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
If dependency_monkey_pipeline is set to false, this configuration
option has no effect.
should_include.library_usage¶
Library calls that should be present to include the pipeline unit. This creates an ability to include a pipeline unit only if some parts of a library are used that affect the application.
Note
Example:
library_usage:
# from flask import Flask
flask:
- flask.Flask
# Match if anything is imported from tensorflow.keras.
tensorflow:
- tensorflow.keras.*
The use of libraries is statically checked using on client side invectio library.
should_include.dependencies¶
Dependencies on other pipeline units. All the stated pipeline units have to be
registered (should_include has to be evaluated as true) as listed
dependencies are pre-requisites to register the stated pipeline unit.
Note
Example:
should_include:
dependencies:
boots:
- thoth.ExampleBoot
- CoreBoot
This part of the should_include section is specific to a unit that states
dependencies on two units of type boot. ExampleBoot is a boot
pipeline unit from prescription named thoth and CoreBoot is a boot
provided by the adviser Python implementation (corresponds to a name of the
Python class).
Referencing unknown units evaluates always to false.
If no dependencies are stated, the given pipeline unit is not dependent on any pipeline unit.
should_include.dependencies.boots¶
A list of boot pipeline units that need to be present in the resolution process. Referenced by respective unit name and optional prescription name for referencing units from prescriptions (see above for more info).
should_include.dependencies.pseudonyms¶
A list of pseudonym pipeline units that need to be present in the resolution process. Referenced by respective unit name and optional prescription name for referencing units from prescriptions (see above for more info).
should_include.dependencies.sieves¶
A list of sieve pipeline units that need to be present in the resolution process. Referenced by respective unit name and optional prescription name for referencing units from prescriptions (see above for more info).
should_include.dependencies.steps¶
A list of step pipeline units that need to be present in the resolution process. Referenced by respective unit name and optional prescription name for referencing units from prescriptions (see above for more info).
should_include.dependencies.strides¶
A list of stride pipeline units that need to be present in the resolution process. Referenced by respective unit name and optional prescription name for referencing units from prescriptions (see above for more info).
should_include.dependencies.wraps¶
A list of wrap pipeline units that need to be present in the resolution process. Referenced by respective unit name and optional prescription name for referencing units from prescriptions (see above for more info).
Labels - should_include.labels¶
Labels introduce a mechanism to register pipeline units only for requests that
state the given label. An example can be a CI system that is asking for an
advise and labels the request with requester=ci_foo. In such a case, the
resolution engine includes pipeline units that are specific to the CI system
(besides the ones that are added by default or matching other labels stated
in the request).
Note
Example:
Register the given pipeline unit if team=thoth or requester=ci_foo
were provided:
labels:
team: thoth
requester: ci_foo
Runtime environments - should_include.runtime_environments¶
Matching runtime environment configurations for which pipeline units should be included in the resolution process. This configuration section is meant for units that are specific for runtime environments.
should_include.runtime_environments.operating_systems¶
A list of operating systems for which the pipeline unit should be included.
Each entry optionally states name (operating system name) and version
(operating system version). Not providing any of the two means matching any
value.
Note
Example:
operating_systems:
- name: rhel # matches Red Hat Enterprise Linux in any version
- name: fedora # matches Fedora in version 33
version: 33
should_include.runtime_environments.hardware¶
Matching hardware available when running the application. This configuration basically creates a matrix of hardware that should be available on user’s side to register the given pipeline unit in the resolution process.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
hardware:
# Matches any GPU or no GPU available and
# CPU family 1 CPU model 9 or CPU family 2 and CPU model 8.
- cpu_families: [1, 2]
cpu_models: [9, 8]
# Matches CPU family 1, CPU model 9 running on GPU "Foo" or GPU "Bar",
- cpu_families: [1]
cpu_models: [9]
gpu_models:
- Foo
- Bar
# Matching any CPU family except for 1.
- cpu_families:
not: [1]
should_include.runtime_environments.python_versions¶
A list of Python versions that need to be matched for including the given pipeline unit.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
python_versions:
# Match when running 3.8 or 3.9:
- '3.8'
- '3.9'
python_versions:
# Match all except for 3.8
not: ['3.8']
If this configuration option is not provided, it defaults to any Python version.
Python version is always in form of <major>.<minor>. Patch versions
are not considered.
should_include.runtime_environments.cuda_versions¶
A list of Nvidia CUDA versions that need to be matched for including the given pipeline unit.
Alternatively the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
cuda_versions:
# Match when running CUDA 9.0 or 9.2.
- '9.0'
- '9.2'
cuda_versions:
# Match all except for 9.0 and 9.2.
not: ['9.0', '9.2]
If this configuration option is not provided, it defaults to any CUDA version - even if none available.
A special value of null means no CUDA version available.
Note
Example:
cuda_versions:
# Match when running CUDA 9.1 or no CUDA available.
- '9.1'
- null
cuda_versions:
# Match if any CUDA is available.
not: [null]
should_include.runtime_environments.platforms¶
A list of platforms for which the given pipeline unit should be registered.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
platforms:
- linux-x86_64
platforms:
# Any except for linux-x86_64
not: [linux-x86_64]
If this configuration option is not supplied, it defaults to any platform.
should_include.runtime_environments.openblas_versions¶
A list of OpenBLAS versions that need to be matched for including the given pipeline unit.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
openblas_versions:
# Match when running OpenBLAS 0.3.13, 0.3.0.
- '0.3.13'
- '0.3.0'
If this configuration option is not provided, it defaults to any OpenBLAS version - even none available.
A special value of null means no OpenBLAS version available.
Note
Example:
openblas_versions:
# Match when running OpenBLAS 0.3.13 or no OpenBLAS is available.
- '0.3.13'
- null
openblas_versions:
# Match when any version of OpenBLAS is available.
not: [null]
should_include.runtime_environments.openmpi_versions¶
A list of OpenMPI versions that need to be matched for including the given pipeline unit.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
openmpi_versions:
# Match when running OpenMPI 4.1.0 or 4.0.5
- '4.1.0'
- '4.0.5'
If this configuration option is not provided, it defaults to any OpenMPI version - even none available.
A special value of null means no OpenMPI version available.
Note
Example:
openblas_versions:
# Match when no OpenMPI is available.
- null
openblas_versions:
# Match when any version of OpenMPI is available.
not: [null]
should_include.runtime_environments.cudnn_versions¶
A list of Nvidia cuDNN versions that need to be matched for including the given pipeline unit.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
cudnn_versions:
# Match when running cuDNN 8.0.5 or 7.6.5
- '8.0.5'
- '7.6.5'
If this configuration option is not provided, it defaults to any cuDNN version - even none available.
A special value of null means no cuDNN version available.
Note
Example:
cudnn_versions:
# Match when no cuDNN is available.
- null
cudnn_versions:
# Match when cuDNN is available.
not: [null]
should_include.runtime_environments.mkl_versions¶
A list of Intel MKL versions that need to be matched for including the given pipeline unit.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
mkl_versions:
# Match when running MKL 2021.1
- '2021.1'
If this configuration option is not provided, it defaults to any MKL version - even none available.
A special value of null means no MKL version available.
Note
Example:
mkl_versions:
# Match when no Intel MKL is available.
- null
mkl_versions:
# Match when any Intel MKL is available.
not: [null]
should_include.runtime_environments.base_images¶
A list of base images that are used as a runtime environment when running the application. These base images map to Thoth’s S2I container images or container images produced by the AICoE-CI pipeline.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
base_images:
# Match UBI8 Python 3.8 container environment or UBI8 Python 3.6 container
# environment in specific versions.
- quay.io/thoth-station/s2i-thoth-ubi8-py38:v1.0.0
- quay.io/thoth-station/s2i-thoth-ubi8-py36:v0.8.1
base_images:
# Do not match UBI8 Python 3.8 container environment and UBI8 Python 3.6
# container environment in specific versions.
not:
- quay.io/thoth-station/s2i-thoth-ubi8-py38:v1.0.0
- quay.io/thoth-station/s2i-thoth-ubi8-py36:v0.8.1
should_include.runtime_environments.abi¶
A list of ABI that have to be present in the runtime environment.
Alternatively, the list can be wrapped with a “not” statement which inverts the logic.
Note
Example:
abi:
# Include the given pipeline unit if the following two image symbols are
# present in the environment.
- GLIBC_2.4
- GNUTLS_3_6_6
abi:
# Include the given pipeline unit if the following image symbol
# is **not** present in the environment.
not:
- GLIBC_2.4
should_include.runtime_environments.rpm_packages¶
A list of RPM packages that should or should not be present in the runtime environment in order to register the given pipeline unit.
An RPM package can be specified using the following fields.
package_identifier- fully qualified package identifier (e.g.gcc-c++-8.3.1-5.1.el8.x86_64)package_name- name of the packagegcc-c++(mandatory)epoch- used for clarifying version historypackage_version- package version identifier (e.g.8.3.1)release- RPM package release (e.g.5.1.el8)arch- architecture (e.g.x86_64)src- boolean describing whether the given package is a source distribution (e.g.false)
See RPM packaging guide for more information on NEVRA (Name-Epoch-Version-Release-Architecture).
If any field is not provided (except for package_name which is mandatory)
any value on the runtime environment side is evaluated as matching.
Note
Example:
rpm_packages:
# Include the given pipeline unit if git is present (any version)
# and gcc+c++ based on package specification supplied.
- package_name: git
- arch: x86_64
epoch: null
package_identifier: gcc-c++-8.3.1-5.1.el8.x86_64
package_name: gcc-c++
package_version: 8.3.1
release: 5.1.el8
src: false
rpm_packages:
# Include the given pipeline unit if git is **not** present in the
# runtime environment.
not:
- package_name: git
should_include.runtime_environments.python_packages¶
A list of Python packages that should or should not be present in the runtime environment in order to register the given pipeline unit.
Information about Python package can be specified using the following fields.
name- mandatory, name of the package (e.g.jupyterhub)version- package version specifier (e.g.~=1.4.1)location- a regular expression describing where the given package should be installed. An example use of this option is detecting Python packages that are installed inside Python s2i environment. The regular expression is matched using re.fullmatch.
If version is not provided, any version present registers
the given pipeline unit.
If location is not provided, any location is considered. Note that the detection
of Python packages does not enforce their availability on PYTHONPATH.
Note
Example:
python_packages:
# Register if jupyterhub~=1.4.1 is present in s2i virtualenv
# and micropipenv<=1.1.0 is installed regardless of its location.
- name: jupyterhub
version: "~=1.4.1"
location: "^/opt/app-root/.*"
- name: micropipenv
version: <=1.1.0
python_packages:
# Include the given pipeline unit if jupyterhub is **not** present in the
# runtime environment.
not:
- name: jupyterhub
Boots¶
Declaring pipeline units of type boot.
The following example shows all the configuration options that can be applied for a boot pipeline unit type. See respective sections described below for more info. Also note, the example shows all the options that can be supplied and is not semantically valid (not all options can be supplied at the same time semantically):
name: BootUnit
type: boot
should_include:
# See should_include section for more info.
match: # Criteria to trigger run of this pipeline unit. Defaults to always running the boot pipeline unit if no package_name is provided.
package_name: flask # Name of the package that needs to be present in the direct dependency listing to run this unit.
run:
stack_info: # Information printed to the recommended stack report.
- type: ERROR
message: "Unable to perform this operation"
link: https://thoth-station.ninja # A link to stack info or a link to a web page.
# Configuration of prematurely terminating the resolution process - the
# message will be reported to the user. If this configuration option is not
# set, the resolver will not terminate when running this unit.
eager_stop_pipeline: "Terminating resolution as 'flask' is in direct dependencies."
# Configuration of prematurely terminating the resolution process.
not_acceptable: "Cannot include this package"
log:
message: "Some text printed to log on pipeline unit run."
type: "WARNING"
Boot match¶
The match section allows to define optional name of the package that should be present in direct dependencies to trigger run of the pipeline unit.
Note
Example:
name: BootUnit
type: boot
should_include:
adviser_pipeline: true
match:
package_name: flask
run:
log:
type: WARNING
message: Found package 'flask' in the direct dependency listing
It is also possibly to match the given pipeline unit for multiple package names by providing a match listing:
Note
Example:
name: BootUnit
type: boot
should_include:
adviser_pipeline: true
match:
- package_name: flask
- package_name: numpy
run:
log:
type: WARNING
message: Found package 'flask' or 'numpy' in the direct dependency listing
Boot run.stack_info¶
Optional a list of information added to the “stack info” field that is specific for the application stack.
Each entry in the list is specified by three attributes:
type- any ofINFO,WARNING, andERRORspecifying severity of the produced infomessage- a message in free text form printed to userslink- a link to a document describing more information in detail
The link can be in a form of a valid HTTP or HTTPS URL or a string which references justifications available at thoth-station.ninja/justifications.
Note
Example:
name: BootUnit
type: boot
should_include:
adviser_pipeline: true
recommendation_types:
- performance
runtime_environments:
operating_systems:
- name: rhel
version: '8'
python_versions: ['3.6']
run:
stack_info:
- type: WARNING
message: It is recommended to switch to Python 3.8 to improve performance
link: 'https://developers.redhat.com/blog/2020/06/25/red-hat-enterprise-linux-8-2-brings-faster-python-3-8-run-speeds/'
Boot run.eager_stop_pipeline¶
An optional string describing exception that should be raised during resolver boot causing the resolution process to halt.
Note
Example:
name: BootUnit
type: boot
should_include:
adviser_pipeline: true
recommendation_types:
- security
runtime_environments:
operating_systems:
- name: fedora
run:
eager_stop_pipeline: Security recommendation types are disabled for Fedora, use RHEL instead
Boot run.log¶
Print the given message to logs if the pipeline unit is included and run.
Note
Example:
name: BootUnit
type: boot
should_include:
adviser_pipeline: true
dependency_monkey_pipeline: true
run:
log:
message: Using prescriptions in the resolution process
type: INFO
Pseudonyms¶
Declaring pipeline units of type pseudonym.
The following example shows all the configuration options that can be applied for a pseudonym pipeline unit type. See respective sections described below for more info. Also note, the example shows all the options that can be supplied and is not semantically valid (not all options can be supplied at the same time semantically):
name: PseudonymUnit
type: pseudonym
should_include: # See should_include section.
match: # Criteria to trigger run of this pipeline unit. Defaults to always running the pseudonym pipeline unit if no package_version is provided.
package_version:
name: flask # Mandatory, name of the package for which pseudonym should be registered.
version: '>1.0,<=1.1.0' # Version specifier for which the pseudonym should be run. If not provided, defaults to any version.
index_url: 'https://pypi.org/simple' # Package source index for which the pseudonym should be run. If not provided, defaults to any index.
run:
log: # Optional text printed to logs when the unit gets called.
message: "Some text printed to log on pipeline unit run."
type: "WARNING"
stack_info: # Information printed to the recommended stack report.
- type: WARNING
message: "Hello, world"
link: https://thoth-station.ninja # A link to justifications or a link to a web page.
yield:
# Pseudonym that should be registered.
yield_matched_version: true # If set to true, use version that was matched instead of the one provided in the locked_version part.
package_version:
name: flask # Mandatory, name of the pseudonym package.
locked_version: '==1.2.0' # Version of the pseudonym in a locked form.
index_url: 'https://pypi.org/simple' # Package source index where the pseudonym is hosted.
The pseudonym is registered for the specified criteria. The unit derived out of this declarative prescription will make sure the package yielded is known to the resolver.
Pseudonym run.log¶
Print the given message to logs if the pipeline unit is included and run.
See boot’s log that has shared semantics.
Pseudonym run.stack_info¶
See stack info which semantics is shared with this unit.
Note stack info is added only once even if the pipeline unit is run multiple times during the resolution process.
Pseudonym match¶
Package described in package_version field that should be matched by three
entries:
name- mandatory, name of the package for which the pseudonym should be providedversion- optional, version in a form of version specifier for which the pseudonym should be providedindex_url- optional, Python package index URL for which the pseudonym should be provided
See examples below for more info.
It is also possibly to match the given pseudonym pipeline unit for multiple packages by providing a match listing.
Note
Example:
name: PseudonymUnit type: pseudonym should_include: times: 1 adviser_pipeline: true match: - package_version: name: tensorflow index_url: "https://pypi.org/simple" - package_version: name: tensorflow-gpu index_url: "https://pypi.org/simple" run: stack_info: - message: "Considering also intel-tensorflow and tensorflow-gpu as an alternative to tensorflow" type: "INFO" link: "https://pypi.org/project/intel-tensorflow" yield: yield_matched_version: true package_version: name: intel-tensorflow index_url: "https://pypi.org/simple"
Pseudonym run.yield¶
Description of a package that should be yielded. Made out of two entries:
yield_matched_version- yields version that was matched based on version specifier in thematchsection, defaults tofalsepackage_version- description of a package that should be yieldedname- mandatory, name of the package that should be yieldedlocked_version- optional, disjoint withyield_matched_version; describes locked version of the package that should be yieldedindex_url- optional, Python package index to be used to provide pseudonyms
If no version provided or no index explicitly set, all found in the database (analyzed by Thoth) are yielded.
Note
An example pipeline unit that suggests intel-tensorflow coming from PyPI
as an alternative to tensorflow:
name: PseudonymUnit
type: pseudonym
should_include:
times: 1
adviser_pipeline: true
match:
package_version:
name: tensorflow
index_url: "https://pypi.org/simple"
run:
stack_info:
- message: "Considering also intel-tensorflow as an alternative to tensorflow"
type: "INFO"
link: "https://pypi.org/project/intel-tensorflow"
yield:
yield_matched_version: true
package_version:
name: intel-tensorflow
index_url: "https://pypi.org/simple"
Sieves¶
Declaring pipeline units of type sieve.
The following example shows all the configuration options that can be applied for a sieve pipeline unit type. See respective sections described below for more info. Also note, the example shows all the options that can be supplied and is not semantically valid (not all options can be supplied at the same time semantically):
name: SieveUnit
type: sieve
should_include: # See should_include section.
match: # Criteria to trigger run of this pipeline unit. Defaults to always running the sieve pipeline unit if no package_version is provided.
package_version: # Any package matching this criteria will be filtered out from the resolution.
name: flask # Name of the package for which the unit should be registered.
version: '>1.0,<=1.1.0' # Version specifier for which the sieve should be run. If not provided, defauts to any version.
index_url: 'https://pypi.org/simple' # Package source index for which the sieve should be run. If not provided, defaults to any index.
run:
log: # Optional text printed to logs when the unit gets called.
message: "Some text printed to log on pipeline unit run."
type: "WARNING"
stack_info: # Information printed to the recommended stack report.
- type: WARNING
message: "Hello, world"
link: https://thoth-station.ninja # A link to justifications or a link to a web page.
Sieve match¶
Specifies a package version that should be matched to execute the given unit during in the resolution pipeline.
The package is described by:
name- name of the Python package that should be matched, any package name matched if not providedversion- version in a form of version specification to be matched, any version matched if not providedindex_url- URL of the Python package index from where the given package is consumed, matches any index if not provided
Note
Example:
name: SieveUnit
type: sieve
should_include:
adviser_pipeline: true
recommendation_types:
- security
match:
package_version:
index_url: 'https://pypi.org/simple'
run:
stack_info:
- type: WARNING
message: "Filtering out all the packages from PyPI for security reasons"
link: "https://pypi.org/simple"
It is also possible to match the same pipeline unit for multiple match criteria provided by providing match listing.
Note
Example:
name: SieveUnit
type: sieve
should_include:
adviser_pipeline: true
match:
- package_version:
name: gnumpy
- package_version:
name: dumpy
- package_version:
name: bumpy
- package_version:
name: pansas
run:
stack_info:
- type: WARNING
message: "Filtering out known typo-squatted packages"
link: "https://pypi.org/simple"
Sieve run.log¶
Print the given message to logs if the pipeline unit is included and run.
Note
Example:
name: SieveUnit
type: sieve
should_include:
times: 1
adviser_pipeline: true
runtime_environments:
python_versions: ['3.5', '3.6', '3.7', '3.8', '3.9']
match:
package_version:
name: enum34
run:
log:
type: WARNING
message: All releases of package 'enum34' were filtered out
stack_info:
- type: WARNING
message: All releases of package 'enum34' were filtered out
link: 'http://pypi.org/project/enum34'
See boot’s log that has shared semantics.
Sieve run.stack_info¶
See stack info which semantics is shared with this unit.
Note stack info is added only once even if the pipeline unit is run multiple times during the resolution process.
Note
An example pipeline unit that filters out pysaml2 with the reported CVE.
name: SieveUnit
type: sieve
should_include:
times: 1
adviser_pipeline: true
recommendation_types:
- security
- stable
match:
package_version:
name: pysaml2
version: '<6.5.0'
index_url: 'https://pypi.org/simple'
run:
stack_info:
- type: WARNING
message: "Not considering package pysaml2 based on vulnerability present"
link: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21238"
SkipPackageSieve¶
A sieve that removes the given package from the dependency graph. Removing the given package causes that the whole sub-graph of dependencies introduced by the given dependency is removed. This unit can be used to remove accidentally added requirements.
Note
Example:
name: SkipPackageSieve
type: sieve.SkipPackage
should_include:
adviser_pipeline: true
match:
package_name: scipy
run:
log:
message: "Some text printed to log on pipeline unit run."
type: "WARNING"
stack_info:
- type: WARNING
message: "Package scipy was removed"
link: https://github.com/tensorflow/tensorflow/issues/35709
Steps¶
Declaring pipeline units of type step.
The following example shows all the configuration options that can be applied for a step pipeline unit type. See respective sections described below for more info. Also note, the example shows all the options that can be supplied and is not semantically valid (not all options can be supplied at the same time semantically):
name: StepUnit
type: step
should_include: # See should_include section.
match: # Criteria to trigger run of this pipeline unit. Defaults to always running the boot pipeline unit if no package_version is provided.
package_version: # Any package matching this criteria will be filtered out from the resolution.
name: flask # Name of the package for which the unit should be registered.
version: '>1.0,<=1.1.0' # Version specifier for which the sieve should be run. If not provided, defaults to any version.
index_url: 'https://pypi.org/simple' # Package source index for which the sieve should be run. If not provided, defaults to any index.
state: # Optional, resolver internal state to match for the given resolution step.
resolved_dependencies:
- name: werkzeug # Dependencies that have to be present in the resolved state.
version: "==1.0.0"
index_url: 'https://pypi.org/simple'
run:
score: 0.42 # Score assigned to the step performed in the resolution.
justification:
- type: INFO
message: "Hello, Thoth!"
link: https://thoth-station.ninja
not_acceptable: "Bad package inclusion" # Block including certain package during the resolution.
# Configuration of prematurely terminating the resolution process.
eager_stop_pipeline: "Stop pipeline"
multi_package_resolution: false # Run this pipeline multiple times when matched mutliple times. Defaults to false if not provided.
log: # Optional text printed to logs when the unit gets called.
message: "Some text printed to log on pipeline unit run."
type: "WARNING"
stack_info: # Information printed to the recommended stack report.
- type: WARNING
message: "Hello, world"
link: https://thoth-station.ninja # A link to justifications or a link to a web page.
Step match¶
Match the given step performed in the resolution process. A step is described by state stating all the resolved dependencies so far and package that is about to be resolved:
package_version- package that is about to be resolved by adding it to the resolver’s statename- optional, name of the packageversion- optional, version in a form of version specifierindex_url- optional, Python package index URL
state- internal resolver’s state with resolved dependencies
A state that needs to be met to trigger the given step pipeline. The state states resolved dependencies where each entry in the resolved dependency listing is described as:
name- optional package name that has to be stated in the resolved dependency listingversion- optional package version in a form of version specifier that has to be stated in the resolved dependency listingindex_url- optional package index from which the given package is consumed
To run the given step, all the packages in the resolved dependency listing
need to be present in the resolved software stack. Also both state and
package_version need to be matched.
It is possible to provide a listing of matching criteria to run the given pipeline unit multiple times.
Step run.log¶
Print the given message to logs if the pipeline unit is included and run.
See boot’s log that has shared semantics.
Step run.stack_info¶
See stack info which semantics is shared with this unit.
Note stack info is added only once even if the pipeline unit is run multiple times during the resolution process.
Step run.multi_package_resolution¶
Boolean stating whether the given unit should be run if criteria match multiple times per resolution run. Defaults to false.
Step run.justification¶
Optional justification added to the resolved stack when the pipeline unit is
run. This justification is added only if no not_acceptable and no
eager_stop_pipeline are supplied - if the given step is a valid step in the
resolution process. See Adding justifications to the recommended software for more info on how to write
justifications and their semantics.
Each entry in the list is specified by three attributes:
type- any ofINFO,WARNING, andERRORspecifying severity of the produced infomessage- a message in free text form printed to userslink- a link to a document describing more information in detail
The link can be in a form of a valid HTTP or HTTPS URL or a string which references justifications available at thoth-station.ninja/justifications.
Note
Example:
name: StepUnit
type: step
should_include:
times: 1
adviser_pipeline: true
match:
package_version:
index_url: 'https://thoth-station.ninja/simple'
run:
score: +0.1
justification:
- type: INFO
message: "Builds available on index thoth-station.ninja/simple take precedence"
link: "https://thoth-station.ninja/"
Step run.score¶
Optional score addition to penalize or prioritize resolving the given stack. Score has to be from interval -1.0 to +1.0 inclusively.
See justification for an example.
Step run.not_acceptable¶
Make the given step not acceptable in the resolution process.
Note
Example:
A pipeline unit that filters out any tensorflow~=2.4.0 when
numpy==1.19.1 is in already resolved dependencies.
name: StepUnit
type: step
should_include:
times: 1
adviser_pipeline: true
match:
package_version:
name: numpy
version: "==1.19.1"
index_url: 'https://pypi.org/simple'
state:
resolved_dependencies:
# Considering builds available also on other indexes than PyPI.
- name: tensorflow
version: '~=2.4.0'
run:
multi_package_resolution: true
not_acceptable: "NumPy==1.19.5 is causing issues when used with TensorFlow 2.4"
stack_info:
- type: WARNING
message: "NumPy==1.19.5 is causing issues when used with TensorFlow 2.4"
link: "https://thoth-station.ninja/j/tf_24_np.html"
Step run.eager_stop_pipeline¶
If the given pipeline unit is registered and matched, it will cause the whole resolution to halt and report back any results computed.
Strides¶
Declaring pipeline units of type stride.
The following example shows all the configuration options that can be applied for a stride pipeline unit type. See respective sections described below for more info. Also note, the example shows all the options that can be supplied and is not semantically valid (not all options can be supplied at the same time semantically):
name: StrideUnit
type: stride
should_include: # See should_include section.
match: # Criteria to trigger run of this pipeline unit. Defaults to always running the boot pipeline unit if no package_version is provided.
state: # Optional, resolver internal state to match for the given stride.
resolved_dependencies:
- name: werkzeug # Dependencies that have to be present in the resolved state.
version: "~=1.0.0"
index_url: 'https://pypi.org/simple'
run:
log: # Optional text printed to logs when the unit gets called.
message: "Some text printed to log on pipeline unit run."
type: "WARNING"
stack_info: # Information printed to the recommended stack report.
- type: WARNING
message: "Hello, world"
link: https://thoth-station.ninja # A link to justifications or a link to a web page.
not_acceptable: "Bad package inclusion" # Block resolving the given stack.
# Configuration of prematurely terminating the resolution process.
eager_stop_pipeline: "Stop pipeline"
Stride match¶
A state that needs to be met to trigger the given stride pipeline. The state states resolved dependencies where each entry in the resolved dependency listing is described as:
name- optional package name that has to be stated in the resolved dependency listingversion- optional package version in a form of version specifier that has to be stated in the resolved dependency listingindex_url- optional package index from which the given package is consumed
To run the given stride, all the packages in the resolved dependency listing need to be present in the resolved software stack.
It is possible to provide a listing of match criteria when the given stride pipeline unit run logic can be applied for multiple matched criteria.
Stride run.log¶
Print the given message to logs if the pipeline unit is included and run.
See boot’s log that has shared semantics.
Stride run.stack_info¶
See stack info which semantics is shared with this unit.
Note stack info is added only once even if the pipeline unit is run multiple times during the resolution process.
Stride run.not_acceptable¶
If the given pipeline unit is registered and matched, it will discard the resolved stack matched from the resolver’s results reported.
Stride run.eager_stop_pipeline¶
If the given pipeline unit is registered and matched, it will cause the whole resolution to halt and report back any results computed.
Wraps¶
Declaring pipeline units of type wrap.
The following example shows all the configuration options that can be applied for a wrap pipeline unit type. See respective sections described below for more info. Also note, the example shows all the options that can be supplied and is not semantically valid (not all options can be supplied at the same time semantically):
name: WrapUnit
type: wrap
should_include: # See should_include section.
match: # Criteria to trigger run of this pipeline unit. Defaults to always running the boot pipeline unit if no package_version is provided.
state: # Optional, resolver internal state to match for the given stride.
resolved_dependencies:
- name: werkzeug # Dependencies that have to be present in the resolved state.
version: ">=1.0.0,<2.5.0"
index_url: 'https://pypi.org/simple'
run:
not_acceptable: "Bad package inclusion" # Block resolving the given stack.
# Configuration of prematurely terminating the resolution process.
eager_stop_pipeline: "Stop pipeline"
log: # Optional text printed to logs when the unit gets called.
message: "Some text printed to log on pipeline unit run."
type: "WARNING"
stack_info: # Information printed to the recommended stack report.
- type: WARNING
message: "Hello, world"
link: https://thoth-station.ninja # A link to justifications or a link to a web page.
justification:
- type: INFO
message: "Hello, Thoth!"
link: https://thoth-station.ninja
advised_manifest_changes:
- apiVersion: "apps.openshift.io/v1"
kind: DeploymentConfig
patch:
op: add
path: "/spec/template/spec/containers/0/env/0"
value:
name: "WORKDIR"
value: "/home/workdir"
Wrap match¶
A state that needs to be met to trigger the given wrap pipeline unit. The state states resolved dependencies where each entry in the resolved dependency listing is described as:
name- optional package name that has to be stated in the resolved dependency listingversion- optional package version in a form of version specifier that has to be stated in the resolved dependency listingindex_url- optional package index from which the given package is consumed
To run the given wrap pipeline unit, all the packages in the resolved dependency listing need to be present in the resolved software stack.
It is possible to provide a listing of match criteria when the given wrap pipeline unit run logic can be applied for multiple matched criteria.
Wrap run.log¶
Print the given message to logs if the pipeline unit is included and run.
See boot’s log that has shared semantics.
Wrap run.stack_info¶
See stack info which semantics is shared with this unit.
Note stack info is added only once even if the pipeline unit is run multiple times during the resolution process.
Note
Example:
name: WrapUnit
type: wrap
should_include:
adviser_pipeline: true
recommendation_types:
# Only warn here, in case of performance the corresponding resolution step can be penalized.
- latest
- testing
library_usage:
tensorflow:
- tensorflow.keras.layers.Embedding
match:
# Matching multiple criteria.
- state:
resolved_dependencies:
- name: tensorflow
version: "<=2.4.0"
- state:
resolved_dependencies:
- name: tensorflow-cpu
version: "<=2.4.0"
- state:
resolved_dependencies:
- name: tensorflow-gpu
version: "<=2.4.0"
run:
stack_info:
- type: WARNING
message: "TensorFlow in version <=2.4 is slow when tf.keras.layers.Embedding is used"
# Can be replaced with just "tf_42475".
link: "https://thoth-station.ninja/j/tf_42475.html"
Wrap run.not_acceptable¶
If the given pipeline unit is registered and matched, it will discard the resolved stack matched from the resolver’s results reported.
Wrap run.eager_stop_pipeline¶
If the given pipeline unit is registered and matched, it will cause the whole resolution to halt and report back any results computed.
Wrap run.justification¶
Justification added if the given wrap is matched and run. This justification is
similar to the one as provided by step. It is
added to the resolved stack if the match criteria are met. The unit cannot
provide eager_stop_pipeline or not_acceptable to have justification
available.
Wrap run.advised_manifest_changes¶
Suggested changes to the manifest files used for deployment.
Note
Example:
A pipeline unit that adjusts environment variables if intel-tensorflow is resolved.
name: WrapUnit
type: wrap
should_include:
adviser_pipeline: true
match:
state:
resolved_dependencies:
- name: intel-tensorflow
run:
advised_manifest_changes:
- apiVersion: "apps.openshift.io/v1"
kind: DeploymentConfig
patch:
op: add
path: "/spec/template/spec/containers/0/env/0"
value:
name: "OMP_NUM_THREADS"
value": "1"
stack_info:
- type: INFO
message: Adjst OMP_NUM_THREADS environment variable to make sure application behaves correctly in containerized environments
link: "https://www.openmp.org/spec-html/5.0/openmpse50.html"
See Advised manifest changes section for more info and semantics.
GitHubReleaseNotesWrap¶
A specific type of wrap pipeline unit that adds links to GitHub release page. See the linked demo for more info.
GitHubReleaseNotesWrap run.release_notes¶
A list of entries describing release for which resolved a link to GitHub release should be constructed.
Note
Example:
name: GitHubReleaseNotesWrap
type: wrap.GitHubReleaseNotes
should_include:
adviser_pipeline: true
run:
release_notes:
- organization: pallets
repository: flask
package_version:
name: flask
index_url: 'https://pypi.org/simple'
- organization: tensorflow
repository: tensorflow
# Tags are prefixed with 'v'.
tag_version_prefix: v
package_version:
name: tensorflow
version: '>=1.0.0'
index_url: 'https://pypi.org/simple'
The example above will link to GitHub release info if listed packages are
in the resolved stack. Restrictions on version and index_url are
optional. If not provided, any values are accepted. Examples for flask in
version 1.1.0 and
tensorflow in version 2.3.2.