The Gazelle Python Manifest hash: how critical is it? Can we add a flag to remove it? #2974

dougthor42 · 2025-06-11T23:44:21Z

dougthor42
Jun 11, 2025
Collaborator

AIUI, the gazelle python manifest hash line only exists so that gazelle_python_manifest.test can return quickly.

What are the thoughts on optionally removing the hash? Eg via something like:

gazelle_python_manifest(
    name = "gazelle_python_manifest",
    modules_mapping = ":modules_map",
    experimental_exclude_hash = True,  # bleh. Maybe experimental_include_hash = False (default True) is more readable
)

Context:

Our CI pipeline recently slowed down significantly because we moved to an internal python package index that is having some latency issues. This means that when people run gazelle_python_manifest.update, it can take on the order of minutes. It also means that our entire CI pipeline takes upwards of 30 minutes.

Some days we have a lot of changes to our python dependency versions, and thus a lot of changes to the gazelle_python.yaml hash. This means that users get CI conflicts on the hash and have to rebase and restart the process again, only to have some other change swoop in and cause a different conflict on the hash. It can be frustrating.

Of course, this isn't an issue with rules_python, but adding an option that removes the hash would resolve (readL hide/mask) at least some problems.

Our CI is set up to run gazelle_python_manifest.test as one of the first steps. I assume that removing the hash would mean that this step now takes O(minutes), but on the user side they would not have to deal with merge conflicts, saving them O(hours).

Answered by aignas

Jun 29, 2025

If you specify the requirements file, then it will use the hash to short-circuit the go_test that is running to check that the file is up-to-date.

However, if you don't specify it, then it will use the bazel action cache to see if the test needs rerunning. At the end of the day all of the whl files are the inputs to the manifest generation. So I am not sure if your explanation why you are using makes sense to me. If your runners' repository cache is hydrated, you should not have to worry about it.

View full answer

aignas · 2025-06-27T14:00:11Z

aignas
Jun 27, 2025
Maintainer

bzlmod_build_file_generation does not have the manifest hash. It all depends if you pass the requirements arg to the gazelle_python_manifest macro. Does this help? See build_file_generation and bzlmod_build_file_generation that showcase both usages.

3 replies

dougthor42 Jun 27, 2025
Collaborator Author

We're still locking our requirements outside of Bazel (eg directly with uv pip compile) for other reasons.

So the hash is effectively taking place of the bazel action cache for generating the lock file, got it.

aignas Jun 29, 2025
Maintainer

If you specify the requirements file, then it will use the hash to short-circuit the go_test that is running to check that the file is up-to-date.

However, if you don't specify it, then it will use the bazel action cache to see if the test needs rerunning. At the end of the day all of the whl files are the inputs to the manifest generation. So I am not sure if your explanation why you are using makes sense to me. If your runners' repository cache is hydrated, you should not have to worry about it.

Answer selected by dougthor42

dougthor42 Jun 30, 2025
Collaborator Author

Man, thanks for being patient with me. I don't know why I was being so dense haha.

This all now makes sense and I finally found how to disable the hash:

If unset, no integrity field is added to the manifest, meaning testing it is just as expensive as generating it, but modifying it is much less likely to result in a merge conflict.

So all I need to do is:

 gazelle_python_manifest(
     name = "gazelle_python_manifest",
     modules_mapping = ":modules_map",
     pip_repository_name = "pypi",
-    requirements = "//:requirements.txt",
 )

For some reason, I kept thinking that gazelle_python_manifest consumed requirements.txt directly in order to generate the manifest. Instead, gazelle_python_manifest uses the pip hub from MODULE.bazel to generate the manifest contents. gazelle_python_manifest using requirements.txt directly is only used to generate the hash.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

The Gazelle Python Manifest hash: how critical is it? Can we add a flag to remove it? #2974

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment 3 replies

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{editor}}'s edit

{{editor}}'s edit

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Uh oh!

The Gazelle Python Manifest hash: how critical is it? Can we add a flag to remove it? #2974

Uh oh!

dougthor42 Jun 11, 2025 Collaborator

Context:

Replies: 1 comment · 3 replies

Uh oh!

Uh oh!

aignas Jun 27, 2025 Maintainer

Uh oh!

dougthor42 Jun 27, 2025 Collaborator Author

Uh oh!

aignas Jun 29, 2025 Maintainer

Uh oh!

dougthor42 Jun 30, 2025 Collaborator Author

dougthor42
Jun 11, 2025
Collaborator

Replies: 1 comment 3 replies

aignas
Jun 27, 2025
Maintainer

dougthor42 Jun 27, 2025
Collaborator Author

aignas Jun 29, 2025
Maintainer

dougthor42 Jun 30, 2025
Collaborator Author