Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SBOM issue is still there there is successful pipeline AI.Models.NL2Flow.MultiTurn Repo #862

Closed
hravellamicrosoft opened this issue Oct 17, 2023 · 5 comments · Fixed by #920 or microsoft/sbom-tool#455
Closed

SBOM issue is still there there is successful pipeline AI.Models.NL2Flow.MultiTurn Repo #862

hravellamicrosoft opened this issue Oct 17, 2023 · 5 comments · Fixed by #920 or microsoft/sbom-tool#455
Assignees
@cobya
Labels
detector:pip The pip detector status:in-progress Someone is working on implementation type:bug Bug fix of existing functionality

Comments

@hravellamicrosoft
Copy link

hravellamicrosoft commented Oct 17, 2023
edited by cobya
Loading

Hello Team,

Though there is successful official pipeline, still showing SBOM issues for the repo “AI.Models.NL2Flow.MultiTurn-Official”.

https://dev.azure.com/powerbi/Business360%20AI/_build/results?buildId=8197256&view=logs&j=0029b136-61e5-522f-ecc4-230ce6a150b5&t=b4ad4c61-af02-5b5d-29c6-f4b9746ae1f5

https://dev.azure.com/powerbi/Business360%20AI/_build?definitionId=9290&_a=summary

there are couple of below error messages in logs.

##[information]

Getting Python data from https://pypi.org/pypi/AI.Models/json
##[error]Component "0.0.3" : {ReleaseValue)} could not be added to the sorted list of pip components for spec="AI.Models". Usually this happens with unexpected PyPi version formats (e.g. prerelease/dev versions).
System.ArgumentException: An item with the same key has already been added. Key: 0.0.3
at System.Collections.Generic.Dictionary`2.TryInsert(TKey key, TValue value, InsertionBehavior behavior)
at System.Collections.Generic.Dictionary`2.Add(TKey key, TValue value)
at Microsoft.ComponentDetection.Detectors.Pip.PythonVersion.Create(String version)
at Microsoft.ComponentDetection.Detectors.Pip.PyPiClient.GetReleasesAsync(PipDependencySpecification spec)
##[error]Component "0.1.3" : {ReleaseValue)} could not be added to the sorted list of pip components for spec="AI.Models". Usually this happens with unexpected PyPi version formats (e.g. prerelease/dev versions).
System.ArgumentException: An item with the same key has already been added. Key: 0.1.3
at System.Collections.Generic.Dictionary`2.TryInsert(TKey key, TValue value, InsertionBehavior behavior)
at System.Collections.Generic.Dictionary`2.Add(TKey key, TValue value)
at Microsoft.ComponentDetection.Detectors.Pip.PythonVersion.Create(String version)
at Microsoft.ComponentDetection.Detectors.Pip.PyPiClient.GetReleasesAsync(PipDependencySpecification spec)
##[warning]Root dependency "AI.Models" not found on pypi. Skipping package.
##[warning]Root dependency "AI.Models" not found on pypi. Skipping package.
##[information]Getting Python data from https://pypi.org/pypi/torch/json
##[information]Getting Python data from https://pypi.org/pypi/torch/json
##[information]Getting Python data from https://pypi.org/pypi/pyspark/json
##[information]Getting Python data from https://pypi.org/pypi/pyspark/json
##[error]Component "3.0.2" : {ReleaseValue)} could not be added to the sorted list of pip components for spec="pyspark". Usually this happens with unexpected PyPi version formats (e.g. prerelease/dev versions).
System.ArgumentException: An item with the same key has already been added. Key: 3.0.2
at System.Collections.Generic.Dictionary`2.TryInsert(TKey key, TValue value, InsertionBehavior behavior)
at System.Collections.Generic.Dictionary`2.Add(TKey key, TValue value)
at Microsoft.ComponentDetection.Detectors.Pip.PythonVersion.Create(String version)
at Microsoft.ComponentDetection.Detectors.Pip.PyPiClient.GetReleasesAsync(PipDependencySpecification spec)
##[error]Component "3.1.3" : {ReleaseValue)} could not be added to the sorted list of pip components for spec="pyspark". Usually this happens with unexpected PyPi version formats (e.g. prerelease/dev versions).
System.ArgumentException: An item with the same key has already been added. Key: 3.1.3

Can you please share your views, why this behaviour for the Repo “AI.Models.NL2Flow.MultiTurn-Official”. ?

Regards,
Hari

AB#2115052
@cobya cobya added type:bug Bug fix of existing functionality detector:pip The pip detector labels Oct 18, 2023
@hravellamicrosoft
Copy link
Author

Is there any update on this issue ?

@hravellamicrosoft
Copy link
Author

Hello,
I need to get this issue resolve ASAP, I ma blocked with my priority task due to this issue.
@cobya Can you please assign this some none to look ?

Regards,
Hari

@cobya cobya self-assigned this Nov 29, 2023
@cobya
Copy link
Contributor

cobya commented Nov 29, 2023

@hravellamicrosoft I will be taking a look at this in the next few days.

@cobya cobya mentioned this issue Nov 29, 2023
Closed
@cobya cobya added the status:in-progress Someone is working on implementation label Nov 29, 2023
@cobya cobya mentioned this issue Nov 30, 2023
Merged
@cobya
Copy link
Contributor

cobya commented Nov 30, 2023

Exception was occurring due to a race condition in parallel API calls to PyPi. Opened #920 to resolve the issue.

@cobya cobya closed this as completed in #920 Dec 1, 2023
@sebasgomez238 sebasgomez238 mentioned this issue Dec 4, 2023
Merged
@hravellamicrosoft
Copy link
Author

Thank you @cobya for the assistance on this issue!

@hravellamicrosoft hravellamicrosoft mentioned this issue Dec 5, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@cobya cobya

Labels
detector:pip The pip detector status:in-progress Someone is working on implementation type:bug Bug fix of existing functionality
Projects
None yet
Milestone
No milestone
2 participants
@cobya @hravellamicrosoft