Skip to content

Add komi-learn update self-update command#8

Merged
rainxchzed merged 2 commits into
mainfrom
feat/cli-update-command
May 31, 2026
Merged

Add komi-learn update self-update command#8
rainxchzed merged 2 commits into
mainfrom
feat/cli-update-command

Conversation

@rainxchzed
Copy link
Copy Markdown
Contributor

@rainxchzed rainxchzed commented May 31, 2026

What

Adds komi-learn update — check PyPI for a newer release and upgrade in place.

komi-learn update          # check + (with confirm) upgrade
komi-learn update --check  # only report whether an update is available
komi-learn update --yes    # upgrade without the prompt

Why

There was no in-CLI way to upgrade after a new PyPI release (0.1.0 -> 0.2.0 -> 0.3.0 were all manual pip install -U). Users expect update to exist.

How it upgrades the right environment

The hard part isn't the PyPI check — it's not breaking the user's environment. plan_upgrade() detects the install method:

  • pipx (running from a pipx-managed venv, or PIPX_* env set) -> pipx upgrade komi-learn
  • pip otherwise -> [sys.executable, -m, pip, install, --upgrade, komi-learn] — upgrades the running interpreter, the one the hooks import (mirrors model_install.py)
  • undetectable (no pip importable, not pipx — e.g. frozen/standalone) -> prints the command instead of guessing and corrupting the install

After upgrade, the new version is read from a fresh subprocess because importlib.metadata is cached for the life of the running process.

Also fixes

komi/__init__.py had a stale __version__ = "0.1.0" while pyproject was at 0.3.0 (doctor printed the wrong version). It now derives from installed distribution metadata, so doctor and update both report the truth and the two can't drift again. The literal is kept only as a source-tree fallback.

Tests

tests/test_update.py — 25 tests: version compare (incl. 0.10.0 > 0.9.0, which a string compare gets wrong), PyPI lookup + offline/malformed payloads, pip/pipx detection, undetectable fallback, upgrade success/failure/missing-binary, and every CLI routing branch. Network and subprocess are fully mocked.

Full suite: 240 passed, 1 skipped. Smoke-tested live: update --check against PyPI correctly reports being on the latest version.

🤖 Generated with Claude Code

rainxchzed and others added 2 commits May 31, 2026 14:33
@rainxchzed @claude
Add komi-learn update self-update command
7b3c549 
Users had no in-CLI way to upgrade after a new PyPI release. `update` checks
PyPI for a newer version and upgrades in place via the right package manager:

- pipx when running from a pipx-managed venv (`pipx upgrade`)
- otherwise pip into the *running* interpreter (the one the hooks import),
  mirroring model_install.py
- if neither can be determined safely, print the command instead of guessing
  and risking a broken environment

`--check` reports availability without upgrading; `--yes` skips the confirm.
Network failures are non-fatal. After upgrading, the new version is read from a
fresh subprocess (importlib.metadata is cached in-process).

Also fixes a stale `__version__` (hardcoded 0.1.0 while pyproject was 0.3.0):
it now derives from installed distribution metadata, so doctor and update both
report the truth and the two never drift again.

Tests: tests/test_update.py (25) — version compare incl. 0.10>0.9, PyPI
lookup + offline/malformed, pip/pipx detection, undetectable fallback, upgrade
success/failure, and all CLI routing branches. Full suite 240 passed, 1 skip.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
@rainxchzed @claude
Apply 3-persona review fixes to update command
14a20c4 
Adversarial review (security + AI-eng + architect) found real issues; fixed all:

Security:
- check_latest now refuses HTTP redirects (no-redirect opener) and verifies the
  final URL is https -- the hardcoded literal only guaranteed the first hop, so a
  MITM could downgrade to http and feed a spoofed "newer" version. Bound the
  response read at 5MB (DoS guard).
- pipx upgrade resolves pipx to an ABSOLUTE path via shutil.which (was unqualified
  "pipx" off PATH -- a planted binary could run during update); refuses if not
  found. Tightened _is_pipx so a bare PIPX_HOME env var no longer flips a pip
  install into the pipx branch -- the interpreter must actually live under it.

Correctness (AI-eng):
- Rewrote version comparison as a self-contained PEP 440-lite comparator and
  DROPPED the optional packaging dependency. The old fallback disagreed with
  packaging on rc/post/dev/epoch and on 1.0 vs 1.0.0, so the answer varied by
  environment -- a real downgrade/no-op-as-upgrade bug for our likely 0.4.0rc
  releases. Now one code path: pads tuples (1.0==1.0.0), strips leading v,
  orders dev < pre(a<b<rc) < final < post, honors epoch.
- cmd_update no longer claims "upgraded to X" when the post-upgrade re-check can't
  confirm the version (pip exiting 0 isn't proof); says "couldn't confirm" instead.

Architecture:
- Deleted dead UpdateResult dataclass (exported, never constructed).
- Single source of truth for the version: pyproject reads komi.__version__ via
  setuptools dynamic version, killing the _FALLBACK_VERSION literal drift. Build
  + twine check verified (wheel/sdist resolve to 0.3.0).

Tests: fixed the tautological --check assert (both sides were identical and the
string matched a different branch); added is_newer cases for rc/post/dev/epoch +
1.0/1.0.0 + leading-v + a total-ordering chain; added redirect-refusal,
non-https-final-url, oversized-body, pipx-abs-path, pipx-not-found, and
bare-PIPX_HOME-insufficient tests; added a dynamic-version drift guard.
test_update.py 25 -> 51. Full suite 266 passed, 1 skip.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
@rainxchzed
Copy link
Copy Markdown
Contributor Author

rainxchzed commented May 31, 2026

Three-persona review applied (security + AI engineer + architect)

All three returned SHIP-WITH-FIXES. Every flagged NOW-fix is in 14a20c4:

Security

  • Refuse HTTP redirects in the PyPI lookup + assert final URL is https (the literal only covered the first hop; a MITM could downgrade to http and serve a fake "newer" version). Bound the response read at 5MB.
  • Resolve pipx to an absolute path via shutil.which (was unqualified pipx off PATH — planted-binary RCE during update); refuse if not found. Tightened _is_pipx so a bare PIPX_HOME can't flip a pip install into the pipx branch.

Correctness

  • Replaced the version comparator: dropped the optional packaging dependency and wrote a self-contained PEP 440-lite comparator with one code path. The old packaging-or-fallback split disagreed on rc/post/dev/epoch and 1.0 vs 1.0.0 — a real no-op-as-upgrade bug for our likely 0.4.0rc releases.
  • cmd_update no longer prints "upgraded → X" when the post-upgrade re-check can't confirm the version.

Architecture

  • Deleted dead UpdateResult. Switched to setuptools dynamic version so pyproject reads komi.__version__ — one source of truth, no drift (build + twine check verified).

Tests: fixed the tautological --check assert; added version-compare edge cases (rc/post/dev/epoch, 1.0/1.0.0, leading-v, a total-ordering chain), security tests (redirect refusal, non-https final URL, oversized body, pipx abs-path, pipx-not-found, bare-PIPX_HOME-insufficient), and a dynamic-version drift guard. test_update.py 25 → 51. Full suite 266 passed, 1 skip.

Deferred (not in this PR, intentionally): lazy version import on the hook hot path, extracting a shared run_pip helper, the probe-refactor for future uv/conda support, and a doctor "hooks generated by an older version" check. None block this.

@rainxchzed rainxchzed merged commit 9ad470d into main May 31, 2026
5 checks passed
@rainxchzed rainxchzed deleted the feat/cli-update-command branch May 31, 2026 09:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@rainxchzed