Sam Clegg <s...@chromium.org> added the comment:
In our case we ended up stripping the .pth file and distributing that modified
.zip files.
I guess the main problem here is that its really not clear that this version of
python doesn't work like the others, or needs to be modified before use. It
can be very confusing to try to debug the resulting error message which for me
was:
```
C:\Users\circleci\project\python\3.7.4_64bit\python.exe
Traceback (most recent call last):
File "C:\Users\circleci\project\upstream\emscripten\\emcc", line 6, in
<module>
from tools import python_selector
ModuleNotFoundError: No module named 'tools'
```
For us we really want a non-interactive installation so a zip file made sense.
We are embeddeding python within another SDK so it sounds like it is
applicable.
Maybe this is documented somewhere and I just missed it, but its certainly was
a confusing difference from other distributions of python.
What about adding some kind of startup message such as "This version of python
requires local modification before using"?
Also, I'm curious about the kind of security risk there is in including the
script directory in sys.path? If an attacker had access to the script
directory couldn't they just modify the script directly?
----------
_______________________________________
Python tracker <rep...@bugs.python.org>
<https://bugs.python.org/issue34841>
_______________________________________
_______________________________________________
Python-bugs-list mailing list
Unsubscribe:
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
