Skip to content

Add PyPI packaging and publish workflow #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
lbartoszcze wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Add PyPI packaging and publish workflow #2

lbartoszcze wants to merge 2 commits into from

Conversation

@lbartoszcze
Copy link
Contributor

@lbartoszcze lbartoszcze commented Feb 8, 2026

Summary

  • Add pyproject.toml for PyPI distribution with setuptools build system, zero dependencies, Python 3.8+ support, and codespy console entry point
  • Add MANIFEST.in to include LICENSE, README.md, and codespy.py in source distributions
  • Add .github/workflows/publish.yml GitHub Action to automatically build and publish to PyPI on release using trusted publishers (OIDC)
  • Refactor GitHub Action to use entrypoint.sh for cleaner CI/CD logic
  • Enhance scanner with --files flag for scanning specific file lists and add security_score/security_grade to JSON output

After merging, users can install via:

pip install codespy

The tool works in three modes:

  • Standalone script: python3 codespy.py .
  • Installed CLI: codespy .
  • Module execution: python3 -m codespy .

Build verified locally: python -m build --sdist --wheel produces codespy-1.1.0.tar.gz and codespy-1.1.0-py3-none-any.whl successfully.

Test plan

  • Verify python -m build --sdist --wheel produces valid distributions
  • Verify pip install dist/codespy-*.whl installs correctly
  • Verify codespy --version works after install
  • Verify python -m codespy --version works after install
  • Verify import codespy; codespy.__version__ works in Python
  • Create a GitHub release and verify the publish workflow triggers

🤖 Generated with Claude Code

Adam and others added 2 commits February 8, 2026 01:03
@claude
Add PyPI packaging support for codespy
a9a565c 
- Add pyproject.toml with setuptools build system, MIT license, Python
  3.8+ requirement, and console_scripts entry point (codespy = codespy:main)
- Add MANIFEST.in to include LICENSE, README.md, and codespy.py in sdist
- Add GitHub Actions workflow (.github/workflows/publish.yml) to build
  and publish to PyPI on release using trusted publishers (OIDC)
- codespy.py works as standalone script, importable module, and via
  python -m codespy with zero dependencies

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
Refactor GitHub Action with entrypoint script and enhance scanner
d4d2929 
- Refactor action.yml to use entrypoint.sh for cleaner CI/CD logic
- Add --files flag to codespy.py for scanning specific file lists
- Add security_score and security_grade to JSON output
- Add example-security-scan.yml workflow for action usage reference

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@lbartoszcze