Adding SecretFetcher to pyproject.toml

[n3o-Bhushan]

• Added SecretFetcher to pyproject.toml
• Updated poetry.lock
• Fixed the test for empty secret based on new syntax

[Peilun-Li]

Curious what's the intended usage with this change? I was under the assumption that the right portion of the equation here needs to be some python libraries that this package depends on (like pyspark, kubernetes, etc. above), but here SecretFecther is something we define ourselves but not a package dependency?

[talebzeghmi]

The goal is to reorganize the dependencies such if the user only want to access secrets that they don't need to also pip install the s3 libraries [s3fs, arrow, parquet, etc].

maybe the extra should be called boto3 instead of SecretFetcher because we are using aws? The extra name of boto3 communicates which dependency we are getting while SecretFetcher is the SDK abstraction. Or the extra be named aws and kubernetes for k8s secrets (which already exists).

[n3o-Bhushan]

That makes sense. I included SecretFetcher as mentioned in the ticket for on-call. @talebzeghmi Just boto3 would be enough though?

[talebzeghmi]

Plus kubernetes maybe? Might need some testing.
We'd also have to move out the s3 libraries into another s3 extra, which makes this a breaking change forcing a schema major version bump...

[Peilun-Li]

Yeah mostly I'm taking this extra pattern as a way to separate out components and dependencies we do not always need. However, in this current pattern if we always need secret fetcher, we do not need to put it as extra? Basically wondering what actual library is blocking us.

[talebzeghmi]

What was preventing Yanik from using zdatasets is that he didn't want the set of s3 libraries [s3fs, arrow, parquet, etc] installed if he is only using SecretFetcher.

Could there be a default extra, say named s3?

[Peilun-Li]

Yeah that could make more sense!