Reputation: 12971
How to use pip 1.5 (on Python) to install and later upgrade externally hosted package repositories?
Let us take the example of https://pypi.python.org/pypi/py-dom-xpath. In this case the package repository is hosted in http://code.google.com/p/py-dom-xpath/.
I am using Python 2.7 on Windows 7.
pip install py-dom-xpath
Downloading/unpacking py-dom-xpath
Could not find any downloads that satisfy the requirement py-dom-xpath
Some externally hosted files were ignored (use --allow-external py-dom-xpath to allow).
Cleaning up...
No distributions at all found for py-dom-xpath
Storing debug log for failure in C:\Users\insrkum\pip\pip.log
pip install --allow-external py-dom-xpath
You must give at least one requirement to install (see "pip help install")
pip install --allow-all-external py-dom-xpath
Downloading/unpacking py-dom-xpath
Could not find any downloads that satisfy the requirement py-dom-xpath
Some insecure and unverifiable files were ignored (use --allow-unverified py-dom-xpath to allow).
Cleaning up...
No distributions at all found for py-dom-xpath
Storing debug log for failure in C:\Users\insrkum\pip\pip.log
I attempted use --index-url option without any success. What works is the following command
pip install http://py-dom-xpath.googlecode.com/files/py-dom-xpath-0.1.tar.gz
This is not the best way to install externally hosted package repositories. I am interested to use --allow-external or --allow-all-external. I also want to learn how to use --upgrade option with externally hosted package repositories.
Upvotes: 3
Views: 3773
Answers (2)
Reputation: 17466
Both --allow-unverified and --allow-external take package name as an argument.
From pip help install:
--allow-external <package> Allow the installation of a package even if it
is externally hosted
--allow-unverified <package> Allow the installation of a package even if it
is hosted in an insecure and unverifiable way
--allow-externalrequires an argument (name of th external to allow).- Same goes for
--allow-unverifiedtoo . - With
pip install --allow-external pyodbc, you are allowing the external calledpyodbc pip install --allow-external pyodbc pydodbcis what you need, firstpyodbcallows that external, second one actually tells pip which package to install.From pip help install: --allow-external Allow the installation of a package even if it is externally hosted --allow-unverified Allow the installation of a package even if it is hosted in an insecure and unverifiable way
So your usage should be
pip install <pkg> --allow-unverified <pkg> --allow-external <pkg>
or the little confusing:
pip install --allow-unverified <pkg> --allow-external <pkg> <pkg>
DO NOT use --allow-all-external when you just want to allow one and not ALL. It kills the whole purpose of putting in the security check.
Upvotes: 0
Reputation: 19
Pip 1.5 is safe : you need --allow-external to download externally hosted packages
and --allow-unverified to download from "http" sites.
You can do it with
pip install --allow-all-external --allow-unverified py-dom-xpath py-dom-xpath
and
pip install --allow-all-external --allow-unverified py-dom-xpath py-dom-xpath --upgrade
Upvotes: 1
Related Questions
- How to update/upgrade a package using pip?
- How do I update/upgrade pip itself from inside my virtual environment?
- How do I upgrade pip on python 2.7?
- How to use upgraded pip from site-packages?
- Using pip to upgrade packages originally installed via apt
- pip install from repo with proper caching and versioning
- Python: upgrade my own package
- Requirement already up-to-date: pip in
- How can pip be installed locally for use with Python 2.7?
- Upgrade packages with pip from inside code