cryptography/pyproject.toml

[build-system]
# These requirements must be kept sync with the requirements on ./github/requirements/build-requirements files
requires = [
    # First version of setuptools to support pyproject.toml configuration
    "setuptools>=61.0.0",
    "wheel",
    # Must be kept in sync with `project.dependencies`
    "cffi>=1.12; platform_python_implementation != 'PyPy'",
    "setuptools-rust>=1.7.0",
]
build-backend = "setuptools.build_meta"

[project]
name = "cryptography"
version = "42.0.0.dev1"
authors = [
    {name = "The Python Cryptographic Authority and individual contributors", email = "cryptography-dev@python.org"}
]
description = "cryptography is a package which provides cryptographic recipes and primitives to Python developers."
readme = "README.rst"
license = {text = "Apache-2.0 OR BSD-3-Clause"}
classifiers = [
    "Development Status :: 5 - Production/Stable",
    "Intended Audience :: Developers",
    "License :: OSI Approved :: Apache Software License",
    "License :: OSI Approved :: BSD License",
    "Natural Language :: English",
    "Operating System :: MacOS :: MacOS X",
    "Operating System :: POSIX",
    "Operating System :: POSIX :: BSD",
    "Operating System :: POSIX :: Linux",
    'Operating System :: Microsoft :: Windows',
    "Programming Language :: Python",
    "Programming Language :: Python :: 3",
    "Programming Language :: Python :: 3 :: Only",
    "Programming Language :: Python :: 3.7",
    "Programming Language :: Python :: 3.8",
    "Programming Language :: Python :: 3.9",
    "Programming Language :: Python :: 3.10",
    "Programming Language :: Python :: 3.11",
    "Programming Language :: Python :: 3.12",
    "Programming Language :: Python :: Implementation :: CPython",
    "Programming Language :: Python :: Implementation :: PyPy",
    "Topic :: Security :: Cryptography",
]
requires-python = ">=3.7"
dependencies = [
    # Must be kept in sync with `build-system.requires`
    "cffi >=1.12",
]

[project.urls]
homepage = "https://github.com/pyca/cryptography"
documentation = "https://cryptography.io/"
source = "https://github.com/pyca/cryptography/"
issues = "https://github.com/pyca/cryptography/issues"
changelog = "https://cryptography.io/en/latest/changelog/"

[tool.setuptools]
zip-safe = false
package-dir = {"" = "src"}

[tool.setuptools.packages.find]
where = ["src"]
include = ["cryptography*"]

[project.optional-dependencies]
ssh = ["bcrypt >=3.1.5"]

# All the following are used for our own testing.
nox = ["nox"]
test = [
    "pytest >=6.2.0",
    "pytest-benchmark",
    "pytest-cov",
    "pytest-xdist",
    "pretend",
]
test-randomorder = ["pytest-randomly"]
docs = ["sphinx >=5.3.0", "sphinx-rtd-theme >=1.1.1"]
docstest =  ["pyenchant >=1.6.11", "twine >=1.12.0", "sphinxcontrib-spelling >=4.0.1"]
sdist = ["build"]
pep8test = ["black", "ruff", "mypy", "check-sdist"]

[[tool.setuptools-rust.ext-modules]]
target = "cryptography.hazmat.bindings._rust"
path = "src/rust/Cargo.toml"
py-limited-api = true
rust-version = ">=1.63.0"


[tool.black]
line-length = 79
target-version = ["py37"]

[tool.pytest.ini_options]
addopts = "-r s --capture=no --strict-markers --benchmark-disable"
console_output_style = "progress-even-when-capture-no"
markers = [
    "skip_fips: this test is not executed in FIPS mode",
    "supported: parametrized test requiring only_if and skip_message",
]

[tool.mypy]
show_error_codes = true
check_untyped_defs = true
no_implicit_reexport = true
warn_redundant_casts = true
warn_unused_ignores = true
warn_unused_configs = true
strict_equality = true

[[tool.mypy.overrides]]
module = [
    "pretend"
]
ignore_missing_imports = true

[tool.coverage.run]
branch = true
relative_files = true
source = [
    "cryptography",
    "tests/",
]

[tool.coverage.paths]
source = [
   "src/cryptography",
   "*.nox/*/lib*/python*/site-packages/cryptography",
   "*.nox\\*\\Lib\\site-packages\\cryptography",
   "*.nox/pypy/site-packages/cryptography",
]
tests =[
   "tests/",
   "*tests\\",
]

[tool.coverage.report]
exclude_lines = [
    "@abc.abstractmethod",
    "@typing.overload",
    "if typing.TYPE_CHECKING",
]

[tool.ruff]
ignore = ['N818']
select = ['E', 'F', 'I', 'N', 'W', 'UP', 'RUF']
line-length = 79

[tool.ruff.isort]
known-first-party = ["cryptography", "cryptography_vectors", "tests"]

[tool.check-sdist]
git-only = [
    "vectors/*",
    "release.py",
    "ci-constraints-requirements.txt",
    ".gitattributes",
    ".gitignore",
]
Fixes #3548 - add a pyproject.toml (#4363) 2018-07-23 17:10:13 +00:00			`[build-system]`
CI: Update build and release dependencies to be referenced by SHA (#9177) * ci: Update GitHub owned actions to be referenced by SHA. Work automated using StepSecurity Signed-off-by: StepSecurity Bot <bot@stepsecurity.io> * ci: create hash-pinned requirements files for build and publish processes Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * ci: change ci files to install build and publish dependencies using hashes Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * ci: fix path to requirements files Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * ci: rebuild the requirement.txt files using `--allow-unsafe` The flag is needed to create hash-pinned requirements for pip and setup-tools. Find more information about this at these issues from [pip-tools](https://github.com/jazzband/pip-tools/issues/806) and from [pip](https://github.com/pypa/pip/issues/6459). Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * refactor(workflows): move build requirements files to a separated folder Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * fix(workflow): requirements download was erasing work from previous steps Using the actions/checkout to download the requirements.txt was erasing some necessary files that came from previous steps. Thus, this commit changes moves the checkout action to the beginnig of the jobs. Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * ci: remove reference to inexistent input in pypi-publish.yml * docs(workflows): remove comment related to a line already delated from code Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * refactor(workflows): use a workflow-level env var to define path to build requirements file Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * fix(workflows): refer to env vars using ${{ }} sintax Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * refactor(workflows): move build and publish requirements files Moved from .github/workflows/requirements/ to .github/requirements/ Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * docs(workflows): add comments on requirements files explaining their relation Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * ci(workflows): update build dependencies to match exactly the ones at pyproject.toml Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> * ci: remove unnecessary parameter When calling actions/checkout , we were passing the `ref` parameter as `github.ref`, but it will likely be always main, or the vary same value as the default for this parameter. * Update dependabot config to cover build/publish dependencies --------- Signed-off-by: StepSecurity Bot <bot@stepsecurity.io> Signed-off-by: Diogo Teles Sant'Anna <diogoteles@google.com> Co-authored-by: StepSecurity Bot <bot@stepsecurity.io> 2023-07-11 18:19:45 +00:00			`# These requirements must be kept sync with the requirements on ./github/requirements/build-requirements files`
Fixes #3548 - add a pyproject.toml (#4363) 2018-07-23 17:10:13 +00:00			`requires = [`
Migrate from setup.cfg to pyproject.toml completely (#8116) One less file? 2023-03-24 20:59:44 +00:00			`# First version of setuptools to support pyproject.toml configuration`
			`"setuptools>=61.0.0",`
Fixes #3548 - add a pyproject.toml (#4363) 2018-07-23 17:10:13 +00:00			`"wheel",`
Migrate from setup.cfg to pyproject.toml completely (#8116) One less file? 2023-03-24 20:59:44 +00:00			# Must be kept in sync with `project.dependencies`
Revert "Ban cffi version that makes CI sad (#6418)" (#6441) * Revert "Ban cffi version that makes CI sad (#6418)" This reverts commit bba65084eadca64776d520004ded10375ab5d30e. * Run the necessary teardown code always * Restore this 2021-10-19 11:45:04 +00:00			`"cffi>=1.12; platform_python_implementation != 'PyPy'",`
Migrate a bit more logic to pyproject.toml (#9489) 2023-08-23 14:32:16 +00:00			`"setuptools-rust>=1.7.0",`
Fixes #3548 - add a pyproject.toml (#4363) 2018-07-23 17:10:13 +00:00			`]`
Add PEP 517 to pyproject.toml (#4783) This puts a new minimum on the PEP 518 requirement for `setuptools` because older versions of setuptools' PEP 517 backend will fail to include `setup.py` in an sdist. 2019-02-28 01:22:18 +00:00			`build-backend = "setuptools.build_meta"`
Paint it Black by the Rolling Stones (#5324) 2020-07-20 18:06:29 +00:00
Migrate from setup.cfg to pyproject.toml completely (#8116) One less file? 2023-03-24 20:59:44 +00:00			`[project]`
			`name = "cryptography"`
reopen for 42 dev (#8993) 2023-05-31 03:29:55 +00:00			`version = "42.0.0.dev1"`
Migrate from setup.cfg to pyproject.toml completely (#8116) One less file? 2023-03-24 20:59:44 +00:00			`authors = [`
			`{name = "The Python Cryptographic Authority and individual contributors", email = "cryptography-dev@python.org"}`
			`]`
			`description = "cryptography is a package which provides cryptographic recipes and primitives to Python developers."`
Make the readme metadata static (#8639) 2023-03-31 06:13:40 +00:00			`readme = "README.rst"`
Migrate from setup.cfg to pyproject.toml completely (#8116) One less file? 2023-03-24 20:59:44 +00:00			`license = {text = "Apache-2.0 OR BSD-3-Clause"}`
			`classifiers = [`
			`"Development Status :: 5 - Production/Stable",`
			`"Intended Audience :: Developers",`
			`"License :: OSI Approved :: Apache Software License",`
			`"License :: OSI Approved :: BSD License",`
			`"Natural Language :: English",`
			`"Operating System :: MacOS :: MacOS X",`
			`"Operating System :: POSIX",`
			`"Operating System :: POSIX :: BSD",`
			`"Operating System :: POSIX :: Linux",`
			`'Operating System :: Microsoft :: Windows',`
			`"Programming Language :: Python",`
			`"Programming Language :: Python :: 3",`
			`"Programming Language :: Python :: 3 :: Only",`
			`"Programming Language :: Python :: 3.7",`
			`"Programming Language :: Python :: 3.8",`
			`"Programming Language :: Python :: 3.9",`
			`"Programming Language :: Python :: 3.10",`
			`"Programming Language :: Python :: 3.11",`
Add Python 3.12 classifier (#9507) 2023-08-26 20:53:09 +00:00			`"Programming Language :: Python :: 3.12",`
Migrate from setup.cfg to pyproject.toml completely (#8116) One less file? 2023-03-24 20:59:44 +00:00			`"Programming Language :: Python :: Implementation :: CPython",`
			`"Programming Language :: Python :: Implementation :: PyPy",`
			`"Topic :: Security :: Cryptography",`
			`]`
			`requires-python = ">=3.7"`
			`dependencies = [`
			# Must be kept in sync with `build-system.requires`
			`"cffi >=1.12",`
			`]`

			`[project.urls]`
			`homepage = "https://github.com/pyca/cryptography"`
			`documentation = "https://cryptography.io/"`
			`source = "https://github.com/pyca/cryptography/"`
			`issues = "https://github.com/pyca/cryptography/issues"`
			`changelog = "https://cryptography.io/en/latest/changelog/"`

			`[tool.setuptools]`
			`zip-safe = false`
			`package-dir = {"" = "src"}`

			`[tool.setuptools.packages.find]`
			`where = ["src"]`
Switch to an allow-list (#8747) Right now the rust subdirectory gets processed for packages, which never exist. This can break some development workflows. 2023-04-18 03:01:25 +00:00			`include = ["cryptography*"]`
Migrate from setup.cfg to pyproject.toml completely (#8116) One less file? 2023-03-24 20:59:44 +00:00
			`[project.optional-dependencies]`
			`ssh = ["bcrypt >=3.1.5"]`

			`# All the following are used for our own testing.`
Switch from tox to nox (#8651) 2023-04-02 07:28:22 +00:00			`nox = ["nox"]`
Migrate from setup.cfg to pyproject.toml completely (#8116) One less file? 2023-03-24 20:59:44 +00:00			`test = [`
			`"pytest >=6.2.0",`
			`"pytest-benchmark",`
			`"pytest-cov",`
			`"pytest-xdist",`
			`"pretend",`
			`]`
			`test-randomorder = ["pytest-randomly"]`
			`docs = ["sphinx >=5.3.0", "sphinx-rtd-theme >=1.1.1"]`
			`docstest = ["pyenchant >=1.6.11", "twine >=1.12.0", "sphinxcontrib-spelling >=4.0.1"]`
Don't use setup.py in doc tests (#8820) 2023-04-25 02:10:54 +00:00			`sdist = ["build"]`
Switch from check-manifest to check-sdist (#8846) The latter will work with non-setuptools build backends. 2023-04-30 16:14:28 +00:00			`pep8test = ["black", "ruff", "mypy", "check-sdist"]`
Migrate from setup.cfg to pyproject.toml completely (#8116) One less file? 2023-03-24 20:59:44 +00:00
Migrate a bit more logic to pyproject.toml (#9489) 2023-08-23 14:32:16 +00:00			`[[tool.setuptools-rust.ext-modules]]`
			`target = "cryptography.hazmat.bindings._rust"`
			`path = "src/rust/Cargo.toml"`
			`py-limited-api = true`
			`rust-version = ">=1.63.0"`


Paint it Black by the Rolling Stones (#5324) 2020-07-20 18:06:29 +00:00			`[tool.black]`
			`line-length = 79`
drop python 3.6 support (#8448) * drop python 3.6 support * Update tests/hazmat/bindings/test_openssl.py Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> --------- Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com> 2023-03-24 13:15:13 +00:00			`target-version = ["py37"]`
put pytest configuration somewhere that goes in the sdist (#5648) fixes #5646 2020-12-15 14:42:34 +00:00
			`[tool.pytest.ini_options]`
Switch from pytest-subtests to a mini-version that's faster (#8613) 2023-03-29 02:28:17 +00:00			`addopts = "-r s --capture=no --strict-markers --benchmark-disable"`
add pytest flag to show percentage at all times (#8474) progress-even-when-capture-no isn't in a released pytest yet, but when https://github.com/pytest-dev/pytest/pull/10755 is released this will work. Until then this flag will simply have no effect. Also add a COLUMNS variable and pass it through to tox so we can limit column width to 80 in CI 2023-03-09 11:02:46 +00:00			`console_output_style = "progress-even-when-capture-no"`
put pytest configuration somewhere that goes in the sdist (#5648) fixes #5646 2020-12-15 14:42:34 +00:00			`markers = [`
			`"skip_fips: this test is not executed in FIPS mode",`
			`"supported: parametrized test requiring only_if and skip_message",`
			`]`
Adding mypy configuration to pyproject (#6116) * Adding mypy configuration to pytproject * Correcting specifications for pyproject.toml 2021-06-19 17:39:00 +00:00
			`[tool.mypy]`
			`show_error_codes = true`
			`check_untyped_defs = true`
turn on mypy disallow implicit reexport and fix issues (#6240) * turn on mypy disallow implicit reexport and fix issues * import ordering 2021-08-29 19:18:18 +00:00			`no_implicit_reexport = true`
add some more mypy flags (#6751) remove some unneeded type ignores. This work found a missing type and added it as well. 2021-12-23 12:55:23 +00:00			`warn_redundant_casts = true`
			`warn_unused_ignores = true`
a few more mypy flags and fixes (#7877) 2022-12-04 23:38:51 +00:00			`warn_unused_configs = true`
			`strict_equality = true`
Adding mypy configuration to pyproject (#6116) * Adding mypy configuration to pytproject * Correcting specifications for pyproject.toml 2021-06-19 17:39:00 +00:00
			`[[tool.mypy.overrides]]`
			`module = [`
Make whitespcae in pyproject.toml normal (#6130) 2021-06-19 23:00:16 +00:00			`"pretend"`
Adding mypy configuration to pyproject (#6116) * Adding mypy configuration to pytproject * Correcting specifications for pyproject.toml 2021-06-19 17:39:00 +00:00			`]`
			`ignore_missing_imports = true`
Move coverage configuration into pyproject.toml (#7274) 2022-05-26 22:35:05 +00:00
			`[tool.coverage.run]`
			`branch = true`
			`relative_files = true`
			`source = [`
			`"cryptography",`
			`"tests/",`
			`]`

			`[tool.coverage.paths]`
			`source = [`
			`"src/cryptography",`
Switch from tox to nox (#8651) 2023-04-02 07:28:22 +00:00			`".nox//lib/python/site-packages/cryptography",`
			`".nox\\\\Lib\\site-packages\\cryptography",`
			`"*.nox/pypy/site-packages/cryptography",`
Move coverage configuration into pyproject.toml (#7274) 2022-05-26 22:35:05 +00:00			`]`
			`tests =[`
			`"tests/",`
			`"*tests\\",`
			`]`

			`[tool.coverage.report]`
			`exclude_lines = [`
			`"@abc.abstractmethod",`
			`"@typing.overload",`
			`"if typing.TYPE_CHECKING",`
			`]`
Switch from flake8 to ruff (#7920) It's more than 60x faster. 2022-12-21 02:44:47 +00:00
			`[tool.ruff]`
Try running an extra ruff rule (#9402) * Try running an extra ruff rule I think `from __future__ import annotations` means this is fine, even on older Python * Enable UP007 * Enable UP038 2023-08-11 19:31:31 +00:00			`ignore = ['N818']`
Enable ruff's own ruleset (#9114) 2023-06-23 03:25:46 +00:00			`select = ['E', 'F', 'I', 'N', 'W', 'UP', 'RUF']`
Switch from flake8 to ruff (#7920) It's more than 60x faster. 2022-12-21 02:44:47 +00:00			`line-length = 79`

			`[tool.ruff.isort]`
			`known-first-party = ["cryptography", "cryptography_vectors", "tests"]`
Switch from check-manifest to check-sdist (#8846) The latter will work with non-setuptools build backends. 2023-04-30 16:14:28 +00:00
			`[tool.check-sdist]`
			`git-only = [`
			`"vectors/*",`
			`"release.py",`
			`"ci-constraints-requirements.txt",`
			`".gitattributes",`
			`".gitignore",`
			`]`