New issue 620: Add a friendly description to runtests.py to not scare people from the binary blob inside https://bitbucket.org/hpk42/pytest/issue/620/add-a-friendly-description-to-runtestspy
Dinu Gherman: Binary blobs in Python source code seem strange to many people because they might do some hidden and/or undesired things. The ``pip`` project removes fears like that in a nice way by adding a comment as a header to the file, see https://bootstrap.pypa.io/get-pip.py cited below. This could be quite easily adapted to ``py.test``. ``` #!python # Hi There! # You may be wondering what this giant blob of binary data here is, you might # even be worried that we're up to something nefarious (good for you for being # paranoid!). This is a base64 encoding of a zip file, this zip file contains # an entire copy of pip. # # Pip is a thing that installs packages, pip itself is a package that someone # might want to install, especially if they're looking to run this get-pip.py # script. Pip has a lot of code to deal with the security of installing # packages, various edge cases on various platforms, and other such sort of # "tribal knowledge" that has been encoded in it's code base. Because of this # we basically include an entire copy of pip inside this blob. We do this # because the alternatives are attempt to implement a "minipip" that probably # doesn't do things correctly and has weird edge cases, or compress pip itself # down into a single file. # # If you're wondering how this is created, the secret is # "contrib/build-installer" from the pip repository. ``` _______________________________________________ pytest-commit mailing list pytest-commit@python.org https://mail.python.org/mailman/listinfo/pytest-commit
