cuinixam
diff --git a/‎.buildinfo‎
Lines changed: 1 addition & 1 deletion b/‎.buildinfo‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.doctrees/blogs/2025/spl_bootstrap.doctree‎
31 KB b/‎.doctrees/blogs/2025/spl_bootstrap.doctree‎
31 KB
diff --git a/‎.doctrees/blogs/2025/what_you_did_not_want_to_know_about_your_code.doctree‎
0 Bytes b/‎.doctrees/blogs/2025/what_you_did_not_want_to_know_about_your_code.doctree‎
0 Bytes
diff --git a/‎.doctrees/blogs/2025/yanga_spl_components.doctree‎
0 Bytes b/‎.doctrees/blogs/2025/yanga_spl_components.doctree‎
0 Bytes
diff --git a/‎.doctrees/environment.pickle‎
78.2 KB b/‎.doctrees/environment.pickle‎
78.2 KB
diff --git a/‎_sources/blogs/2025/spl_bootstrap.md.txt‎
Lines changed: 180 additions & 0 deletions b/‎_sources/blogs/2025/spl_bootstrap.md.txt‎
Lines changed: 180 additions & 0 deletions
diff --git a/‎_sources/blogs/2025/what_you_did_not_want_to_know_about_your_code.md.txt‎
Lines changed: 5 additions & 5 deletions b/‎_sources/blogs/2025/what_you_did_not_want_to_know_about_your_code.md.txt‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎_sources/blogs/2025/yanga_spl_components.md.txt‎
Lines changed: 6 additions & 1 deletion b/‎_sources/blogs/2025/yanga_spl_components.md.txt‎
Lines changed: 6 additions & 1 deletion
diff --git a/‎about.html‎
Lines changed: 1 addition & 1 deletion b/‎about.html‎
Lines changed: 1 addition & 1 deletion
@@ -1,4 +1,4 @@
 # Sphinx build info version 1
 # This file records the configuration used when building these files. When it is not found, a full rebuild will be done.
-config: 6a3f85e7ba2770da1364307931195e9e
+config: ae7b7e36dd37d83150154f5664198a3d
 tags: 645f666f9bcd5a90fca523b33c5a78b7
@@ -0,0 +1,180 @@
+---
+tags: python, bootstrap, venv
+category: review
+date: 2025-11-24
+title: SPL Bootstrap - Handle Python Version
+---
+
+## SPL Bootstrap - Handle Python Version
+
+### Introduction
+
+The pipeline implementation for our Software Product Line (SPL) repositories uses the [pypeline](https://github.com/cuinixam/pypeline) Python application.
+In order to start the `pypeline` application, we need to install Python (with a specified version) and create the Python virtual environment.
+This step we call `bootstrap` and it is implemented [here](https://github.com/avengineers/bootstrap).
+
+```{note}
+Currently bootstrap supports only Windows for installing Python.
+```
+
+### Workflow
+
+The bootstrap process is managed by two main scripts: a PowerShell script (`bootstrap.ps1`) for environment setup and a Python script (`bootstrap.py`) for dependency management. The diagram below shows the high-level workflow.
+
+```{mermaid}
+flowchart TD
+    A[bootstrap.ps1] --> B{Python installed?};
+    B -- No --> C[Install Python w/ Scoop 1️⃣];
+    B -- Yes --> D;
+    C --> D[Execute bootstrap.py];
+
+    D --> E{Dependencies changed?};
+    E -- No --> F[End];
+    E -- Yes --> G[Create/Update .venv 2️⃣];
+    G --> H[Install Dependencies];
+    H --> F;
+```
+
+1. This step will first install the `scoop` windows package manager and then call `scoop` to install the configured python version.
+2. The python virtual environment is updated in multiple steps:
+    - create an empty virtual environment with python `venv.create`
+    - install the package manager (e.g., poetry, uv, etc.) and `pip-system-certs` for using the system SSL certificates
+    - run the package manager to install the python dependencies
+
+#### bootstrap.ps1
+
+- Scoop configuration and installation
+- Python version detection and installation
+- Delegates to `bootstrap.py` for virtual environment setup
+
+#### bootstrap.py
+
+- OS-agnostic virtual environment creation (Windows/Unix)
+- Smart caching with hash-based dependency tracking. Only runs if dependencies have been updated.
+- Package manager support: Poetry, UV, Pipenv
+- Automatic pip configuration for custom PyPI sources
+
+#### bootstrap.json Configuration
+
+```json
+{
+    "python_version": "3.11",
+    "python_package_manager": "poetry>=2.1.0",
+    "scoop_ignore_scoopfile": true
+}
+```
+
+### Things to Improve
+
+#### Python Version Management
+
+Currently the bootstrap process installs a fixed Python version as specified in the `bootstrap.json` configuration file.
+When checking if python is installed, it only verifies that the major and minor version match (e.g., `3.11`),
+but does not check for patch versions (e.g., `3.11.4` vs `3.11.5`).
+This can lead to situations that on different machines, slightly different patch versions of Python are installed.
+
+```{note}
+This might not be a big issue in most cases, but it can lead to inconsistencies in our particular case,
+because we use the python `venv` module to create the initial virtual environment,
+which will include the standard library of the installed Python version.
+```
+
+The solution could be:
+
+- to find all installed python versions in path and check if the exact version is already installed
+- it might be that python versions installed with scoop are not available in path, so we need to query scoop for installed versions
+- if the exact version is not installed, install it with scoop
+- the `bootstrap.py` shall fail if the python interpreter version does not match exactly the configured version.
+  This can happen if the user runs the `pypeline` including the `CreateVEnv` step which calls directly the `bootstrap.py` script.
+
+#### Virtual Environment Management
+
+As mention above, the virtual environment is created in three steps:
+
+1. create an empty virtual environment with python `venv.create`
+1. install the package manager (e.g., poetry, uv, etc.) and `pip-system-certs` for using the system SSL certificates
+1. run the package manager to install the python dependencies
+
+There is a problem with the second step: the package manager and pip-system certs are installed with pip.
+These packages have their own dependencies, which are not tracked by pip because pip has no support for `.lock` files.
+
+When step three is executed, the package manager might need to upgrade/downgrade some packages which were implicitly installed in step two
+and this can cause crashes due to dependency conflicts.
+
+#### Solution 1: User-defined Initial Packages
+
+One way to solve this is to let the user define the list of package to install in step two in the `bootstrap.json` configuration file.
+For example:
+
+```{code-block} json
+{
+    "python_version": "3.11.4",
+    "venv_initial_packages": [
+        "poetry==2.1.0",
+        "pip-system-certs==2.2.1",
+        "wrapt==1.14.0"
+    ],
+}
+```
+
+In case there is a conflict between the initial packages and the packages defined in the package manager lock file,
+the user can adjust the versions in the configuration file accordingly.
+
+#### Solution 2: Install Package Manager with Scoop
+
+Another way could be to install both python and the package manager with scoop in the `bootstrap.ps1` script,
+so that pip is not involved at all in step two. This means that package manager will install exactly the version specified in the `.lock` file
+and therefore always have a consistent set of dependencies.
+
+The problem with this approach is that `pip-system-certs` is not available as a scoop package
+and package installation will fail when ran against an on-premise PyPI server with self-signed certificates.
+
+#### Package manager command
+
+Currently the command to install dependencies with the package manager is hardcoded in the `bootstrap.py` script
+with extra arguments being supported via the `bootstrap.json` configuration file.
+
+```{code-block} json
+{
+    "python_package_manager_args": "--clean"
+}
+```
+
+We added the feature to support extra arguments because we needed for some projects to pass the `--clean` to `pipenv`
+to remove unused packages already existing in the virtual environment.
+
+A better approach would be to let the user define the full command to install dependencies with the package manager.
+For example:
+
+```{code-block} json
+{
+    "venv_install_command": "poetry install --no-dev --clean"
+}
+```
+
+This would give the user full control over how dependencies are installed.
+
+## Conclusion
+
+If all these improvements are implemented, the bootstrap process will be more reliable and flexible, ensuring consistent Python environments.
+
+The configuration will allow users to tailor the bootstrap process to their specific needs.
+
+```{code-block} json
+{
+    "python_version": "3.11.4",
+    "venv_initial_packages": [
+        "poetry==2.1.0",
+        "pip-system-certs==2.2.1"
+    ],
+    "venv_install_command": "poetry install --no-dev --clean"
+}
+```
+
+This configuration will ensure that:
+
+- Python 3.11.4 is installed
+- The package manager and pip-system-certs are installed with the specified versions
+- Dependencies are installed with the specified command
+
+Have fun bootstrapping! ✌️
@@ -28,11 +28,11 @@ For this I added a new command in a Python app I use to parse and analyze C/C++
 
 The new `analyze` command does the following:
 
-* parse the `compile_commands.json` file to find all the object files
-* run `nm` on each object file to get the global symbols and determine their type:
-   * `extern` for undefined globals - these are the `required` symbols
-   * `local` for local globals - these are the `provided` symbols
-* create an html report using [cytoscape.js](https://cytoscape.org/) to visualize the dependencies between the object files.
+- parse the `compile_commands.json` file to find all the object files
+- run `nm` on each object file to get the global symbols and determine their type:
+  - `extern` for undefined globals - these are the `required` symbols
+  - `local` for local globals - these are the `provided` symbols
+- create an html report using [cytoscape.js](https://cytoscape.org/) to visualize the dependencies between the object files.
   I also added an option to group the object files in named containers based on their path.
 
 The result is a nice interactive graph where you can zoom in and out, drag the nodes around and enjoy the complexity of the code base.
 
@@ -12,6 +12,7 @@ These variants consist of *components* that implement the features required for
 Each variant might be built for different *platforms*, different hardware environments with their own constraints and capabilities.
 
 When thinking about components, there are two main categories:
+
 - Components which implement your product's features
 - Components which provide the functionality for other components to run on a certain hardware platform
 
@@ -37,6 +38,7 @@ variants:
 ```
 
 Example for a platform configuration:
+
 ```{code-block} yaml
 platforms:
   - name: arduino_uno
@@ -55,6 +57,7 @@ I had a component that it only worked for Arduino, but I used it only for one of
 YANGA gives you three places to define components:
 
 ### 1. In Your Product Variant
+
 For components that define what your product does, regardless of platform.
 
 ```{code-block} yaml
@@ -67,6 +70,7 @@ variants:
 ```
 
 ### 2. In Your Platform Configuration
+
 For components that every product needs when targeting this platform.
 
 ```{code-block} yaml
@@ -79,6 +83,7 @@ platforms:
 ```
 
 ### 3. In Your Variant's Platform-Specific Section
+
 For components that only some products need, and only on specific platforms.
 
 ```{code-block} yaml
@@ -122,4 +127,4 @@ Each place has its purpose, and using them correctly can make your project easie
 
 If you want to learn more about YANGA please check the [documentation](https://yanga.readthedocs.io/).
 
-✌️
+✌️
@@ -57,7 +57,7 @@
   <meta name="viewport" content="width=device-width, initial-scale=1"/>
   <meta name="docsearch:language" content="en"/>
   <meta name="docsearch:version" content="" />
-    <meta name="docbuild:last-update" content="Oct 26, 2025"/> 
+    <meta name="docbuild:last-update" content="Nov 24, 2025"/> 
 <link
   rel="alternate"
   type="application/atom+xml"