Developing Geodepot¶

This page covers setting up a development environment, running tests, and the release process.

Prerequisites¶

Pixi for environment and dependency management
just as the task runner (thin wrapper around pixi run)
Docker (for integration tests)
Git

Development Setup¶

Install the development environment:

pixi install -e dev

All development tasks are run through just:

just lint          # Lint code with ruff
just format        # Auto-format code with ruff
just format-check  # Check formatting without modifying
just test          # Run all tests with pytest
just docs-build    # Build mkdocs locally
just docs-deploy   # Deploy docs to GitHub Pages

To run specific tests:

pixi run -e dev pytest tests/test_repository.py  # Specific file
pixi run -e dev pytest -k test_name              # Tests matching pattern
pixi run -e dev pytest -v                        # Verbose output

Test Data¶

Test data must be downloaded before running tests:

just download-data

This populates tests/data/ with spatial datasets used by the test suite.

Integration Tests¶

Integration tests (test_repository_collaboration.py) use a Docker-based test server that provides HTTP and SSH endpoints:

just up    # Start nginx + sshd containers
just down  # Stop containers

The test server exposes:

HTTP: http://localhost:8080/geodepot (pull/fetch operations)
SSH/SFTP: ssh://root@localhost:2222:/srv/geodepot (push operations, uses ~/.ssh/id_rsa.pub)

Branch Strategy¶

The project uses a two-branch model:

develop — active development; all feature branches merge here
main — stable releases only; receives merges from develop at release time

Release Process¶

Releases are fully automated through three GitHub Actions workflows that chain together:

workflow_dispatch (on develop)
  └─ release-prepare.yaml
       ├─ bumps version in pyproject.toml
       ├─ updates CHANGELOG with version and date
       ├─ regenerates pixi.lock
       ├─ commits and pushes to develop
       └─ opens PR: develop → main

[maintainer reviews and merges PR]
  └─ release-tag.yaml (fires on PR merge to main)
       └─ creates and pushes git tag (e.g. 1.0.5)

[tag push triggers]
  └─ package-release.yaml
       ├─ runs lint, format check, tests
       ├─ builds pixi bundles for Linux, macOS, Windows
       ├─ runs smoke tests on each platform
       └─ creates GitHub release with artifacts

Step by Step¶

Trigger the release. Go to Actions > "Prepare Release" > Run workflow. Select the branch develop and the bump type (patch, minor, or major).
Review the PR. The workflow opens a PR from develop to main titled "Release vX.Y.Z". Verify the version bump, CHANGELOG entry, and that pixi.lock is updated.
Merge the PR. Once merged, release-tag.yaml automatically creates the git tag on main and pushes it.
Release builds. The tag push triggers package-release.yaml, which builds release bundles on all three platforms and creates a GitHub release.

Required Setup: `RELEASE_TOKEN` Secret¶

Tags pushed with the default GITHUB_TOKEN do not trigger downstream workflows (this is a GitHub Actions safety measure to prevent infinite loops). The release-tag.yaml workflow therefore uses a Personal Access Token stored as the repository secret RELEASE_TOKEN.

To create it:

Go to GitHub Settings > Developer settings > Personal access tokens > Fine-grained tokens.
Create a token scoped to the 3DBAG/geodepot repository with Contents: Read and write permission.
Add it as a repository secret at Settings > Secrets and variables > Actions, named RELEASE_TOKEN.

Version Management¶

Versions are managed by bumpver, configured in pyproject.toml:

[tool.bumpver]
current_version = "1.0.4"
version_pattern = "MAJOR.MINOR.PATCH"
commit = true
tag = false    # tagging is handled by release-tag.yaml
push = false   # pushing is handled by the workflow

The version string appears in two places in pyproject.toml ([project] and [tool.pixi.package]), and bumpver updates both automatically.

pixi.lock must stay in sync

The pixi.lock file embeds the local package version. If you bump the version in pyproject.toml without regenerating the lock file, CI will fail because setup-pixi runs with locked: true. The release workflow handles this automatically by running pixi lock after the version bump. If you bump the version manually, always run pixi lock afterward and commit the updated lock file.

CHANGELOG¶

The CHANGELOG file follows a Keep a Changelog style. During development, add entries under the ## [Unreleased] section. The release workflow automatically inserts a dated version header:

## [Unreleased]

## [1.0.5] - 2026-04-01

- Previously unreleased changes appear here...