[Distutils] [buildout] hard coded urls considered harmful

Jim Fulton jim at zope.com
Fri Oct 9 17:39:31 CEST 2009

On Fri, Oct 9, 2009 at 11:08 AM, Chris Withers <chris at simplistix.co.uk> wrote:
> Hi All,
> bootstrap.py contains the following hard coded url:
> exec urllib2.urlopen('http://peak.telecommunity.com/dist/ez_setup.py'
>                     ).read() in ez
> With hindsight, this seems like a bad idea.

I don't see a good alternative.

> For example, with the ridiculous
> situation we currently have with setuptools and distribute. It also means
> that the above url can't ever change, which is a bit of a harsh requirement.
> My suggestion would be for bootstrap.py to include the code in ez_setup.py,
> but that seems a little heavyweight.

ez_setup.py has a hard coded URL too.  And using it's code wouldn't do
anything for the situation with distribute.

> I guess this will all be solved when
> the standard library includes modules to download packages from PyPI and
> install them. But what to do in the meantime?

For myself, I'm going to stay out of Tarek's way and see what develops. :)


Jim Fulton

More information about the Distutils-SIG mailing list