PyO3/pyo3: Grade B (88/100)

PyO3/pyo3 Scan another repoNew scan

88/ 100 · B

A top-tier open source project. Docs, tests, and CI are all in excellent shape.

Rust bindings for the Python interpreter

Rust15,786 starsApache-2.0updated 4d ago

repo-grade-iota.vercel.app/report/PyO3/pyo3

DocumentationREADME, setup, examples, license

EngineeringTests, CI, linting, lockfiles

Project healthDescription, activity, stars, deps

What to fix first

The highest-impact improvements for this repo.

1
Install and run instructions
DocumentationInfo
Add a .env.example listing all required environment variables so contributors know what to set up.
2
Reproducibility
EngineeringInfo
Add a Dockerfile, .nvmrc, or .python-version to pin the runtime version and make the environment reproducible.
3
Issue and PR templates
EngineeringInfo
A SECURITY.md explains how to responsibly disclose vulnerabilities. Worth adding once the project has real users.

Detailed breakdown

Documentation

README100
- README is present.
- README is well structured with multiple sections.
- README includes screenshots or visuals. Great for first impressions.
- README has code examples.
- README links to a live demo or deployed app.
- README includes status badges.
Install and run instructions90
- README documents how to install the project.
- README documents how to run the project.
- If your project uses environment variables, add a .env.example listing them (+10 pts).Add a .env.example listing all required environment variables so contributors know what to set up.
License100
- Licensed under Apache-2.0.
Contributing guide98
- Contributing guide is detailed and thorough.
- Contributing guide includes setup/install instructions.
- Contributing guide describes code style expectations.
- Contributing guide explains how to run tests.
- Contributing guide describes the PR/review workflow.
- Contributing guide includes code examples.
- Optional: add a Code of Conduct (+5 pts).A CODE_OF_CONDUCT.md signals that your project is welcoming. GitHub has a template you can add in one click.

Engineering

Tests85
- Test files detected (examples/decorator/tests).
- Pytest referenced in pyproject.toml and test files present.
CI/CD100
Not applicable?
- CI is configured (.github/workflows/build.yml).
- CI workflow runs tests.
- CI runs on pull requests, not just on pushes to main.
- CI workflow runs a lint or format check.
- CI runs type checking (tsc, mypy, cargo check, etc.).
- CI reports or uploads test coverage.
- CI caches dependencies for faster runs.
- CI tests across multiple environments or versions.
Linting and formatting40
- No linter or type checker configured in pyproject.toml (−80 pts).Add [tool.ruff] for linting and [tool.mypy] for type checking to pyproject.toml.
- Rust projects have clippy available. Run `cargo clippy` for linting.
- CI does not appear to run `cargo clippy` (−40 pts vs enforcing it in CI).Add `cargo clippy -- -D warnings` and `cargo fmt --check` as CI steps.
- No rustfmt.toml found.Add a rustfmt.toml to enforce a consistent code style across contributors.
Reproducibility95
- Lockfile present (uv.lock). Installs are reproducible.
- No Dockerfile or runtime version pin found. Adding one earns +10 pts.Add a Dockerfile, .nvmrc, or .python-version to pin the runtime version and make the environment reproducible.
- Dependabot covers 4 ecosystems (cargo, cargo, cargo, github-actions). Dependencies stay current.
- Cargo.toml uses Rust edition 2021 (current best practice).
Issue and PR templates90
- Issue or PR templates present.
- Optional: add a SECURITY.md.A SECURITY.md explains how to responsibly disclose vulnerabilities. Worth adding once the project has real users.

Project health

Dependency manifest75
- Dependency manifest found (Cargo.toml).
- pyproject.toml has a [project] table with package metadata.
- pyproject.toml [project] is missing a description.Add `description = "..."` under [project]. It shows on PyPI and in tooling.
- pyproject.toml specifies requires-python, preventing installs on incompatible versions.
Repository metadata70
- Repository has a description.
- Primary language detected: Rust.
Activity100
- Actively maintained (pushed within the last month).
- 15,786 stars.
Housekeeping60
- .gitignore present.
- Build artifacts or local files may be committed (examples/plugin/.DS_Store) (−40 pts).Remove them and add to .gitignore.

Repository files37 root entries

.github
Good: Contributing guide is detailed and thorough.
Good: Contributing guide includes setup/install instructions.
Good: Contributing guide describes code style expectations.
Good: Contributing guide explains how to run tests.
Good: Contributing guide describes the PR/review workflow.
Good: Contributing guide includes code examples.
Good: CI is configured (.github/workflows/build.yml).
Good: Dependabot covers 4 ecosystems (cargo, cargo, cargo, github-actions). Dependencies stay current.
Good: Issue or PR templates present.
.netlify
assets
branding
emscripten
examples
Good: Test files detected (examples/decorator/tests).
Warning: Build artifacts or local files may be committed (examples/plugin/.DS_Store) (−40 pts).Fix: Remove them and add to .gitignore.
guide
newsfragments
pyo3-benches
pyo3-build-config
pyo3-ffi
pyo3-ffi-check
pyo3-introspection
pyo3-macros
pyo3-macros-backend
pyo3-runtime
pytests
src
tests
.gitattributes
.gitignore
Good: .gitignore present.
.towncrier.template.md
Architecture.md
build.rs
Cargo.toml
Good: Dependency manifest found (Cargo.toml).
CHANGELOG.md
CITATION.cff
Code-of-Conduct.md
codecov.yml
Contributing.md
LICENSE-APACHE
LICENSE-MIT
noxfile.py
pyproject.toml
README.md
Good: README is present.
Good: README is well structured with multiple sections.
Good: README includes screenshots or visuals. Great for first impressions.
Good: README has code examples.
Good: README links to a live demo or deployed app.
Good: README includes status badges.
Good: README documents how to install the project.
Good: README documents how to run the project.
Releasing.md
uv.lock
Good: Lockfile present (uv.lock). Installs are reproducible.