Description
I'm opening this for discussion, based on a (non-breaking!) divergence between PyPI's observed behavior and the behavior specified in PEPs 503 and 691.
This comes from the context of Homebrew, which periodically pulls from the Index/JSON APIs as part of checking for releases. CC @samford for viz/more context.
TL;DR: right now, the response to /simple/<name>/ is ordered by largest (i.e. highest) version:
warehouse/warehouse/packaging/utils.py
Lines 48 to 65 in e740cec
As a result of this ordering, higher releases (by version) come last, and lower (by version) releases come first.
Meanwhile, PEP 691 says the following about ordering:
While the files key is an array, and thus is required to be in some kind of an order, neither PEP 503 nor this PEP requires any specific ordering nor that the ordering is consistent from one request to the next. Mentally this is best thought of as a set, but both JSON and HTML lack the functionality to have sets.
In other words, this ordering is an implementation detail within PyPI. However, it's likely that consumers of the Index APIs are depending on this observed behavior (per Hyrum's Law), and are using the current ordering as an optimization to more rapidly find the latest release(s).
Given the above, I wonder if it makes sense for PyPI to make this implementation detail explicit. Some options:
-
Document it in the Index API docs, as an implementation specific detail of PyPI's Index APIs
-
Add some kind of additional field to the
metacomponent of the JSON response, signaling that the index is ordering the fields, e.g.:"meta": { "api-version": "1.0", "order": "version", },
(This might be overkill though.)
OTOH, maybe this doesn't need to be documented or formalized. But I figured I'd open this up for consideration 🙂