feat(pypi): restrict pip.parse hub visibility

Harshal96 · Harshal96 · commit a43c2f2c9dc2 · 2026-05-06T23:04:47.000-05:00
Add a restrict_visibility_to attribute for bzlmod pip.parse so hub aliases are public only for packages listed in direct requirement files. Keep all lockfile packages available to generated wheel repositories so transitive dependencies continue to resolve internally. Fixes #3413
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -96,6 +96,10 @@ END_UNRELEASED_TEMPLATE
 * Python toolchain from [20260414] release.
 * (pypi) `package_metadata` support, fixes 
   [#2054](https://github.com/bazel-contrib/rules_python/issues/2054).
+* (pypi) Added {attr}`pip.parse.restrict_visibility_to` to expose only
+  packages listed in requirement files while keeping lockfile transitive
+  dependencies available internally. Fixes
+  [#3413](https://github.com/bazel-contrib/rules_python/issues/3413).
 
 [20260325]: https://github.com/astral-sh/python-build-standalone/releases/tag/20260325
 [20260414]: https://github.com/astral-sh/python-build-standalone/releases/tag/20260414
diff --git a/docs/pypi/download.md b/docs/pypi/download.md
@@ -24,8 +24,30 @@ pip.parse(
 use_repo(pip, "my_deps")
 ```
 
-For more documentation, see the Bzlmod examples under the {gh-path}`examples` folder or the documentation
-for the {obj}`@rules_python//python/extensions:pip.bzl` extension.
+For more documentation, see the Bzlmod examples under the
+{gh-path}`examples` folder or the documentation for the
+{obj}`@rules_python//python/extensions:pip.bzl` extension.
+
+## Restricting exposed hub packages
+
+By default, every package in {attr}`pip.parse.requirements_lock` gets a public
+hub alias, such as `@my_deps//foo`. If you want only direct dependencies to be
+available to user code, set {attr}`pip.parse.restrict_visibility_to` to one or
+more requirement files that list those direct packages:
+
+```starlark
+pip.parse(
+    hub_name = "my_deps",
+    python_version = "3.13",
+    requirements_lock = "//:requirements_lock.txt",
+    restrict_visibility_to = ["//:requirements.in"],
+)
+```
+
+Packages in the lock file that are not listed in the restricted requirement
+files still get generated wheel repositories, so direct dependencies can use
+their transitive dependencies. Their hub aliases are visible only to the
+generated wheel repositories and are not public targets for user code.
 
 :::note}
 We are using a host-platform compatible toolchain by default to setup pip dependencies.
diff --git a/python/private/pypi/extension.bzl b/python/private/pypi/extension.bzl
@@ -786,6 +786,21 @@ The Python version the dependencies are targetting, in Major.Minor format
 If an interpreter isn't explicitly provided (using `python_interpreter` or
 `python_interpreter_target`), then the version specified here must have
 a corresponding `python.toolchain()` configured.
+""",
+        ),
+        "restrict_visibility_to": attr.label_list(
+            allow_files = True,
+            doc = """
+A list of requirement files whose package names are exposed as public hub
+targets. Packages in the lock files that are not listed here still get wheel
+repositories so they can be used as transitive dependencies, but their hub
+aliases are only visible to repositories generated by this `pip.parse` hub.
+
+This is useful when your lock file contains transitive dependencies that should
+remain implementation details of your direct dependencies.
+
+:::{versionadded} VERSION_NEXT_FEATURE
+:::
 """,
         ),
         "simpleapi_skip": attr.string_list(
diff --git a/python/private/pypi/hub_builder.bzl b/python/private/pypi/hub_builder.bzl
@@ -510,6 +510,7 @@ def _create_whl_repos(
         extra_pip_args = pip_attr.extra_pip_args,
         get_index_urls = self._get_index_urls.get(pip_attr.python_version),
         evaluate_markers = _evaluate_markers(self, pip_attr),
+        exposed_requirements = pip_attr.restrict_visibility_to,
         logger = logger,
     )
 
diff --git a/python/private/pypi/hub_repository.bzl b/python/private/pypi/hub_repository.bzl
@@ -26,12 +26,13 @@ exports_files(["requirements.bzl"])
 """
 
 def _impl(rctx):
-    bzl_packages = rctx.attr.packages or rctx.attr.whl_map.keys()
+    bzl_packages = rctx.attr.packages
     aliases = render_multiplatform_pkg_aliases(
         aliases = {
             key: _whl_config_settings_from_json(values)
             for key, values in rctx.attr.whl_map.items()
         },
+        exposed_packages = bzl_packages,
         extra_hub_aliases = rctx.attr.extra_hub_aliases,
         requirement_cycles = rctx.attr.groups,
         platform_config_settings = rctx.attr.platform_config_settings,
@@ -81,7 +82,8 @@ hub_repository = repository_rule(
         "packages": attr.string_list(
             mandatory = False,
             doc = """\
-The list of packages that will be exposed via all_*requirements macros. Defaults to whl_map keys.
+The list of packages that will be exposed via public hub aliases and
+all_*requirements macros.
 """,
         ),
         "platform_config_settings": attr.string_list_dict(
diff --git a/python/private/pypi/parse_requirements.bzl b/python/private/pypi/parse_requirements.bzl
@@ -42,6 +42,7 @@ def parse_requirements(
         platforms = {},
         get_index_urls = None,
         evaluate_markers = None,
+        exposed_requirements = [],
         extract_url_srcs = True,
         logger):
     """Get the requirements with platforms that the requirements apply to.
@@ -62,6 +63,9 @@ def parse_requirements(
             the platforms stored as values in the input dict. Returns the same
             dict, but with values being platforms that are compatible with the
             requirements line.
+        exposed_requirements: List of requirements files. When present, only
+            packages listed in these files should be exposed via the hub
+            repository.
         extract_url_srcs: A boolean to enable extracting URLs from requirement
             lines to enable using bazel downloader.
         logger: repo_utils.logger, a simple struct to log diagnostic messages.
@@ -92,6 +96,7 @@ def parse_requirements(
     reqs_with_env_markers = {}
     index_url = None
     extra_index_urls = []
+    exposed_package_names = _exposed_package_names(ctx, exposed_requirements)
     for file, plats in requirements_by_platform.items():
         logger.trace(lambda: "Using {} for {}".format(file, plats))
         contents = ctx.read(file)
@@ -231,17 +236,34 @@ def parse_requirements(
         #     for p in dist.target_platforms
         # ]
 
+        normalized_name = normalize_name(name)
+        is_exposed = len(requirement_target_platforms) == len(requirements)
+        if exposed_package_names != None and normalized_name not in exposed_package_names:
+            is_exposed = False
+
         item = struct(
             # Return normalized names
-            name = normalize_name(name),
-            is_exposed = len(requirement_target_platforms) == len(requirements),
+            name = normalized_name,
+            is_exposed = is_exposed,
             is_multiple_versions = len(reqs.values()) > 1,
             index_url = pkg_sources.index_url if pkg_sources else "",
             srcs = package_srcs,
         )
         ret.append(item)
-        if not item.is_exposed and logger:
-            logger.trace(lambda: "Package '{}' will not be exposed because it is only present on a subset of platforms: {} out of {}".format(
+        if (
+            exposed_package_names != None and
+            normalized_name not in exposed_package_names and
+            logger
+        ):
+            logger.trace(lambda: (
+                "Package '{}' will not be exposed because it is not present " +
+                "in restrict_visibility_to"
+            ).format(name))
+        if len(requirement_target_platforms) != len(requirements) and logger:
+            logger.trace(lambda: (
+                "Package '{}' will not be exposed because it is only present " +
+                "on a subset of platforms: {} out of {}"
+            ).format(
                 name,
                 sorted(requirement_target_platforms),
                 sorted(requirements),
@@ -251,6 +273,19 @@ def parse_requirements(
 
     return ret
 
+def _exposed_package_names(ctx, exposed_requirements):
+    """Parse the requirement files that define hub-exposed package names."""
+    if not exposed_requirements:
+        return None
+
+    exposed = {}
+    for file in exposed_requirements:
+        parse_result = parse_requirements_txt(ctx.read(file))
+        for distribution, _ in parse_result.requirements:
+            exposed[normalize_name(distribution)] = None
+
+    return exposed
+
 def _package_srcs(
         *,
         name,
diff --git a/python/private/pypi/render_pkg_aliases.bzl b/python/private/pypi/render_pkg_aliases.bzl
@@ -65,7 +65,7 @@ def _repr_actual(aliases):
     else:
         return render.dict(aliases, key_repr = _repr_config_setting)
 
-def _render_common_aliases(*, name, aliases, **kwargs):
+def _render_common_aliases(*, name, aliases, visibility, **kwargs):
     pkg_aliases = render.call(
         "pkg_aliases",
         name = repr(name),
@@ -80,14 +80,21 @@ def _render_common_aliases(*, name, aliases, **kwargs):
     return """\
 load("@rules_python//python/private/pypi:pkg_aliases.bzl", "pkg_aliases")
 {extra_loads}
-package(default_visibility = ["//visibility:public"])
+package(default_visibility = {visibility})
 
 {aliases}""".format(
         aliases = pkg_aliases,
         extra_loads = extra_loads,
+        visibility = render.list(visibility),
     )
 
-def render_pkg_aliases(*, aliases, requirement_cycles = None, extra_hub_aliases = {}, **kwargs):
+def render_pkg_aliases(
+        *,
+        aliases,
+        requirement_cycles = None,
+        extra_hub_aliases = {},
+        exposed_packages = None,
+        **kwargs):
     """Create alias declarations for each PyPI package.
 
     The aliases should be appended to the pip_repository BUILD.bazel file. These aliases
@@ -100,6 +107,8 @@ def render_pkg_aliases(*, aliases, requirement_cycles = None, extra_hub_aliases
         requirement_cycles: any package groups to also add.
         extra_hub_aliases: The list of extra aliases for each whl to be added
           in addition to the default ones.
+        exposed_packages: The public hub packages. When present, other packages
+          are only visible to generated wheel repositories.
         **kwargs: Extra kwargs to pass to the rules.
 
     Returns:
@@ -124,12 +133,20 @@ def render_pkg_aliases(*, aliases, requirement_cycles = None, extra_hub_aliases
             for whl_name in group_whls
         }
 
+    exposed_packages = _normalize_package_names(exposed_packages)
+    internal_visibility = _internal_visibility(aliases)
+
     files = {
         "{}/BUILD.bazel".format(normalize_name(name)): _render_common_aliases(
             name = normalize_name(name),
             aliases = pkg_aliases,
             extra_aliases = extra_hub_aliases.get(normalize_name(name), []),
             group_name = whl_group_mapping.get(normalize_name(name)),
+            visibility = _package_visibility(
+                name = normalize_name(name),
+                exposed_packages = exposed_packages,
+                internal_visibility = internal_visibility,
+            ),
             **kwargs
         ).strip()
         for name, pkg_aliases in aliases.items()
@@ -139,6 +156,36 @@ def render_pkg_aliases(*, aliases, requirement_cycles = None, extra_hub_aliases
         files["_groups/BUILD.bazel"] = generate_group_library_build_bazel("", requirement_cycles)
     return files
 
+def _normalize_package_names(packages):
+    if packages == None:
+        return None
+
+    return {
+        normalize_name(package): None
+        for package in packages
+    }
+
+def _internal_visibility(aliases):
+    repo_names = {}
+    for pkg_aliases in aliases.values():
+        if type(pkg_aliases) == type(""):
+            repo_names[pkg_aliases] = None
+            continue
+
+        for repo_name in pkg_aliases.values():
+            repo_names[repo_name] = None
+
+    return [
+        "@{}//:__pkg__".format(repo_name)
+        for repo_name in sorted(repo_names)
+    ]
+
+def _package_visibility(*, name, exposed_packages, internal_visibility):
+    if exposed_packages == None or name in exposed_packages:
+        return ["//visibility:public"]
+
+    return internal_visibility
+
 def _major_minor(python_version):
     major, _, tail = python_version.partition(".")
     minor, _, _ = tail.partition(".")
diff --git a/tests/pypi/extension/pip_parse.bzl b/tests/pypi/extension/pip_parse.bzl
@@ -27,6 +27,7 @@ def pip_parse(
         requirements_linux = None,
         requirements_lock = None,
         requirements_windows = None,
+        restrict_visibility_to = [],
         target_platforms = [],
         simpleapi_skip = [],
         timeout = 600,
@@ -60,6 +61,7 @@ def pip_parse(
         requirements_linux = requirements_linux,
         requirements_lock = requirements_lock,
         requirements_windows = requirements_windows,
+        restrict_visibility_to = restrict_visibility_to,
         timeout = timeout,
         whl_modifications = whl_modifications,
         parallel_download = False,
diff --git a/tests/pypi/hub_builder/hub_builder_tests.bzl b/tests/pypi/hub_builder/hub_builder_tests.bzl
@@ -153,6 +153,65 @@ def _test_simple(env):
 
 _tests.append(_test_simple)
 
+def _test_restrict_visibility_to(env):
+    builder = hub_builder(env)
+    builder.pip_parse(
+        _mock_mctx(
+            os_name = "osx",
+            arch_name = "aarch64",
+            mock_files = {
+                "requirements.in": "foo>=0.0.1\n",
+                "requirements.txt": """\
+foo==0.0.1 --hash=sha256:deadbeef
+dep-of-foo==0.0.1 --hash=sha256:deadb00f
+""",
+            },
+        ),
+        _parse(
+            hub_name = "pypi",
+            python_version = "3.15",
+            requirements_lock = "requirements.txt",
+            restrict_visibility_to = ["requirements.in"],
+        ),
+    )
+    pypi = builder.build()
+
+    pypi.exposed_packages().contains_exactly(["foo"])
+    pypi.group_map().contains_exactly({})
+    pypi.whl_map().contains_exactly({
+        "dep_of_foo": {
+            "pypi_315_dep_of_foo": [
+                whl_config_setting(
+                    version = "3.15",
+                ),
+            ],
+        },
+        "foo": {
+            "pypi_315_foo": [
+                whl_config_setting(
+                    version = "3.15",
+                ),
+            ],
+        },
+    })
+    pypi.whl_libraries().contains_exactly({
+        "pypi_315_dep_of_foo": {
+            "config_load": "@pypi//:config.bzl",
+            "dep_template": "@pypi//{name}:{target}",
+            "python_interpreter_target": "unit_test_interpreter_target",
+            "requirement": "dep-of-foo==0.0.1 --hash=sha256:deadb00f",
+        },
+        "pypi_315_foo": {
+            "config_load": "@pypi//:config.bzl",
+            "dep_template": "@pypi//{name}:{target}",
+            "python_interpreter_target": "unit_test_interpreter_target",
+            "requirement": "foo==0.0.1 --hash=sha256:deadbeef",
+        },
+    })
+    pypi.extra_aliases().contains_exactly({})
+
+_tests.append(_test_restrict_visibility_to)
+
 def _test_simple_multiple_requirements(env):
     sub_tests = {
         ("osx", "aarch64"): "simple==0.0.2 --hash=sha256:deadb00f",
diff --git a/tests/pypi/parse_requirements/parse_requirements_tests.bzl b/tests/pypi/parse_requirements/parse_requirements_tests.bzl
diff --git a/tests/pypi/render_pkg_aliases/render_pkg_aliases_test.bzl b/tests/pypi/render_pkg_aliases/render_pkg_aliases_test.bzl

Original file line number	Diff line number	Diff line change
`@@ -510,6 +510,7 @@ def _create_whl_repos(`
`510`	`510`	`extra_pip_args = pip_attr.extra_pip_args,`
`511`	`511`	`get_index_urls = self._get_index_urls.get(pip_attr.python_version),`
`512`	`512`	`evaluate_markers = _evaluate_markers(self, pip_attr),`
	`513`	`+ exposed_requirements = pip_attr.restrict_visibility_to,`
`513`	`514`	`logger = logger,`
`514`	`515`	`)`
`515`	`516`