Metadata-Version: 2.4
Name: buildguard
Version: 0.1.0
Summary: Catch upstream Python dependency breakage before it surprises your CI build
Author: Jeff Henry
License-Expression: LicenseRef-Buildguard-Personal-Use
Project-URL: Homepage, https://hefftools.dev/buildguard
Project-URL: Repository, https://github.com/heffman/buildguard
Project-URL: Issues, https://github.com/heffman/buildguard/issues
Keywords: python,dependencies,ci,packaging,pip,requirements
Classifier: Development Status :: 3 - Alpha
Classifier: Environment :: Console
Classifier: Intended Audience :: Developers
Classifier: Operating System :: OS Independent
Classifier: Programming Language :: Python
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Topic :: Software Development :: Build Tools
Classifier: Topic :: Software Development :: Quality Assurance
Classifier: Topic :: System :: Installation/Setup
Requires-Python: >=3.10
Description-Content-Type: text/markdown
License-File: LICENSE.txt
Provides-Extra: release
Requires-Dist: build>=1.2.2; extra == "release"
Requires-Dist: twine>=5.1.1; extra == "release"
Dynamic: license-file

# buildguard

Catch upstream Python dependency breakage before it surprises your CI build.

`buildguard` is a deterministic CLI that creates a clean virtual environment, attempts to install your pinned dependency set, and fails early when upstream package ecosystem drift breaks installation.

It is intended as a preflight install check for CI.

Licensing:

- free for personal and other non-commercial use
- paid commercial license required for business, client, or other commercial use
- no activation, unlock flow, or license-file check in the CLI

Common upstream drift this catches includes:

- versions disappearing
- wheels removed from package indexes
- build backend behavior changes
- dependency resolution breakage
- incompatible metadata changes
- missing distributions for a Python version or platform

`buildguard` is not:

- a vulnerability scanner
- a dependency resolver
- a lockfile manager
- a license scanner

## Quick Start

```bash
buildguard check requirements.txt
buildguard check requirements.txt --json
```

## Installation

Install from the repository root:

```bash
python3 -m pip install .
```

## CI Example

GitHub Actions:

```yaml
name: Buildguard Preflight

on:
  push:
  pull_request:

jobs:
  buildguard:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4

      - uses: actions/setup-python@v5
        with:
          python-version: '3.11'

      - run: python -m pip install .

      - run: buildguard check requirements.txt
```

## Legacy Interpreter Notes

If you are validating against an older Python interpreter (for example `--python python3.6`), use `--no-upgrade-tools`. This skips `pip/setuptools/wheel` upgrades inside the temporary venv and is often more stable for legacy interpreter tests.

If the `pip` wrapper binary is broken on your machine for that interpreter, use `--python-m-pip` so buildguard runs pip as `python -m pip` inside the temporary venv.

When needed, you can pin build tool versions during the upgrade step:

- `--pip-version <version>`
- `--setuptools-version <version>`
- `--wheel-version <version>`

These options require tool upgrades to be enabled (do not combine with `--no-upgrade-tools`).

## Development

Editable install:

```bash
python3 -m pip install -e . --no-build-isolation
```

Optional local venv setup:

```bash
bash scripts/setup_local_venv.sh
```

Smoke tests:

```bash
python scripts/smoke_test_check_success.py
python scripts/smoke_test_check_failure.py
python scripts/smoke_test_missing_distribution.py
```

## Publishing

PyPI publishing is handled by the GitHub Actions workflow at
[`publish-pypi.yml`](./.github/workflows/publish-pypi.yml).

## Example Output

Success:

```text
buildguard check: requirements.txt
python: python3.11
venv: /tmp/buildguard-abc123

PASS

requirements installed successfully in a clean environment

summary:
elapsed_seconds=18.4
pip_exit_code=0
```

Failure:

```text
buildguard check: requirements.txt
python: python3.11
venv: /tmp/buildguard-abc123

FAIL

pip install -r requirements.txt exited with code 1

likely failing dependency:
uvloop==0.17.0

pip error summary:
Failed building wheel for uvloop
error: subprocess-exited-with-error

summary:
elapsed_seconds=22.7
pip_exit_code=1
```

## Exit Codes

- `0`: success
- `1`: install failure
- `2`: fatal tool/runtime/config error

## Why This Exists

Upstream dependency ecosystem changes can break installs unexpectedly and waste CI time. `buildguard` makes dependency installation a deliberate, fail-fast preflight step.

## Support Scope

`buildguard` v1 is intentionally small and practical. It focuses on deterministic preflight install checks for one requirements file.

## License

See [`LICENSE.txt`](./LICENSE.txt) for the free personal-use terms and
[`COMMERCIAL_LICENSE.md`](./COMMERCIAL_LICENSE.md) for the commercial licensing
model.
