Generate contributor SVG widgets #4
Conversation
|
@vsoch @nothingismagick are you able to help review this? |
|
yep! |
| @@ -0,0 +1,8 @@ | |||
| # THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY. | |||
There was a problem hiding this comment.
Do we want to include the yarn lock file? At least for jekyll, I usually don't add the Gemfile.lock because it adds more issues than helps.
There was a problem hiding this comment.
Most of the time for node projects yes you should. Because the package.json dependencies allow you to install newer semver feature or patch updates at random.
"dependencies": {
"toml": "^3.0.0"
}
(^3.0.0 matches toml 3.1.3 just fine)
Committing a lock file ensures you have consistent environments between developers / CI jobs.
There was a problem hiding this comment.
Alright, 2 vs. 1 here! I should actually be advocating to include it, reproducibility etc.. Maybe this wouldn't be an issue if we interact via a container anyway.
scripts/local-generate-svg.sh
Outdated
|
|
||
| export SOURCECRED_DIRECTORY=$(pwd)/sourcecred_data | ||
| SOURCECRED_GITHUB_TOKEN=`cat secrets/token` | ||
| REPOS=`cat repositories.txt` |
There was a problem hiding this comment.
We should probably check here that this secrets file exists.
There was a problem hiding this comment.
And then of course exit if the variables aren't what we expect.
There was a problem hiding this comment.
The local-* scripts are mostly debugging helpers. But you're right it would be useful for others if it's consistent and produces clear errors like this. Going to improve those a little.
|
|
||
| cd mkweights | ||
| yarn | ||
| cd .. |
There was a problem hiding this comment.
Hmm, so I guess my worry here is that there are quite a few dependencies. For example, not everyone has yarn. and node is a beast. Is this generated on a user computer, locally? I'm thinking either we can provide a Dockerfile (and container?) to issue commands with (and the one dependency is docker of course) or the generation can be done in CI that has a recipe to install everything. Thoughts?
There was a problem hiding this comment.
Hmm, so I guess my worry here is that there are quite a few dependencies.
That is definitely true. I'm involved with a couple of discussions to make depending on sourcecred simpler. For example sourcecred/widgets#8
For example, not everyone has yarn. and node is a beast.
With regards to yarn. Sourcecred has a yarn lockfile committed but not the npm package-lock.json counterpart. Thus your dependencies would be yarn + npm + node if I had kept the npm lock variant. That's why I switch to yarn here.
Is this generated on a user computer, locally?
As local-* is intended for debugging it's useful to have node installed. And yarn is pretty stable so npm install -g yarn would be sufficient if you do have node and npm.
The official node docker container has yarn installed. In .drone.yml I use node:10 as that's the active LTS node version. Should you prefer avoiding node you might try using node:10 or node:12 (current stable and tested by sourcecred test suite) and including the repository root as a bind volume. Personally I've not tested the local-* with this yet. But it's essentially what our Drone build does.
I'm thinking either we can provide a Dockerfile (and container?) to issue commands with (and the one dependency is docker of course) or the generation can be done in CI that has a recipe to install everything. Thoughts?
That is what this PR will do. The .drone.yml file configures the job run on a daily interval. That calls scripts/rebuild-site.sh with node:10 as the main docker image to do so.
There was a problem hiding this comment.
I am not worried about lots of dependencies per sé - but then I have all of these installed on every machine I work on.
There was a problem hiding this comment.
If local is for debugging, and there is a configuration with Drone to run programatically otherwise, I'm good here. What we don't want is an entirely un-reproducible thing.
There was a problem hiding this comment.
Yes the main script used for CI is scripts/rebuild-site.sh
Which is also usable locally.
| yarn install | ||
| yarn backend | ||
| for repo in $REPOS; do | ||
| SOURCECRED_GITHUB_TOKEN=$SOURCECRED_GITHUB_TOKEN node bin/sourcecred.js load $repo --weights ../.weights.json |
There was a problem hiding this comment.
Could you walk me through what is going on here?
- node mkweights create some original file, (and weights.toml is the configuration of weights?
- yarn install installs, what does backend do?
- then we iterate through the repos, and we issue a load command. Are the repos already included in weight.json (and we are loading) or are we adding data to weights.json for the repo?
Probably some comments in these sections would fit the bill, so others / future you can come back and remember what it does :)
There was a problem hiding this comment.
node mkweights create some original file, (and weights.toml is the configuration of weights?
Yes. Sourcecred has a json weights format that is more verbose than the toml file format I'm using. I created the toml format as a more intuitive one to discuss. And lines 7-11 are to convert the toml format to the json format.
yarn install installs, what does backend do?
Yarn has a cli syntax yarn <script_name> so this is the equivalent of npm run <script_name>. In this case the script backend is defined here. Which will use webpack and babel to transliterate the sourcecred source code (using flow and esm) to javascript code that can be executed by node 10 or 12.
then we iterate through the repos, and we issue a load command. Are the repos already included in weight.json (and we are loading) or are we adding data to weights.json for the repo?
The load command fetches github data and runs the sourcecred scoring algorithm. We pass the weights arguments as configuration values. These weights essentially quantify: "How important is a comment? How important is a commit? How important is a PR?" ... etc.
That is the context to what these commands entail.
In broad stroke the workflow is:
- Convert our simplified weights.toml to the weights.json format used by SourceCred.
- yarn install + yarn backend to set up SourceCred.
sourcecred/bin/sourcecred.js load ...to fetch github data and score it using our weights.sourcecred/bin/sourcecred.js scores ...to export those scores in a format we can consume.widgets/bin/contributor-wall-svg.jsto consume those scores and generate the SVG.
There was a problem hiding this comment.
One final question here - just want to check that there is no kind of PI in the GitHub data?
There was a problem hiding this comment.
That is a good question. My assumption would be that because no special permissions are required to fetch user info it could only be public data. However many people people use their full name and an email and make it public. So that may be PI either way. I don't think they are stored, only the ID and username for graphs and avatars and username for widgets. Though I would need to check.
| yarn | ||
| export SVG_MIN_CRED=4.5 | ||
| export SVG_MAX_USERS=50 | ||
| for repo in $REPOS; do |
Based on #4 feedback.
|
Added the extra comments and checks to the local-* debugging scripts. |
| @@ -1,3 +1,6 @@ | |||
| [submodule "sourcecred"] | |||
| path = sourcecred | |||
| url = https://github.com/Beanow/sourcecred.git | |||
| [submodule "widgets"] | |||
There was a problem hiding this comment.
With submodules we need to be explicit about how to clone / fork and install submodules in the documentation. Some people might not immediately know that they need to recurse:
$ git clone --recurse-submodules
There was a problem hiding this comment.
DEVELOPING.md does make mention of it recommending git submodule init > git submodule update.
There is an open issue to do away with the need for submodules upstream, or rather simplify depending on sourcecred: sourcecred/widgets#8
| @@ -0,0 +1,8 @@ | |||
| # THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY. | |||
|
|
||
| cd mkweights | ||
| yarn | ||
| cd .. |
There was a problem hiding this comment.
I am not worried about lots of dependencies per sé - but then I have all of these installed on every machine I work on.
|
@nothingismagick agreed, variants with more information would be useful and implemented in the widgets package. Feedback welcome, as expanding on this would be great for the utility of the package. And achieving the example you gave should be fairly easy if I dig into the SVG spec a little bit. For SFOSC perhaps we should take it up to an issue in the main repo to discuss what we would like to have? |
|
I personally like the square graphics (without names) but I'm open to have my mind changed! @nothingismagick what do you think having the names adds? |
|
It removes the cult of personality. And furthermore, there are people with no personally identifiable, so you end up with stuff like this: |
|
I kind of like the grid, even with the missing pictures here and there :) It looks like a zoom in of one of those paintings / pictures that is made entirely of other pictures. Whoa! That would be an awesome integration for sourcecred - to make a picture based on matching pixels in some template image. |
|
@vsoch your review is marked requesting changes. Was there a particular point I hadn't addressed yet? |
|
Thanks! I gave this another test run before merging and noticed the output |
It's updated daily along with the sourcecred data. See sfosc/sourcecred#4
It's updated daily along with the sourcecred data. See sfosc/sourcecred#4
This PR adds an early version of the SourceCred widgets.
This widgets tool is intended for various styles of "widgets" like markdown tables or images like this SVG, see sourcecred/sourcecred#1047.
Specifically it will generate an SVG with the all-time top 50 contributors over 4.5 cred (based on the new timeline calculation), which we can use for placing in READMEs.
The order of avatars is descending by cred, taking into account our weights defined at
weights.tomlExample from sfosc/sfosc today:
This file would be made available at
https://sfosc.org/sourcecred/widgets/sfosc-sfosc-contributors.svgAnd update along with the scores on a daily cronjob, so we can include this file from the README.md