chore: librarian update image pull request: 20251218T225544Z

[parthea]

feat: update image to us-central1-docker.pkg.dev/cloud-sdk-librarian-prod/images-prod/python-librarian-generator@sha256:b8058df4c45e9a6e07f6b4d65b458d0d059241dd34c814f151c8bf6b89211209

[gemini-code-assist]

Summary of Changes

Hello @parthea, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request updates the core librarian image, which has propagated significant changes across multiple Google Ads and AI client libraries. The primary objective of these changes is to modernize the handling of Mutual TLS (mTLS) client certificates, enhance environment variable parsing for authentication settings, and introduce robust dependency version checks. These updates aim to improve the stability, maintainability, and future compatibility of the affected client libraries.

Highlights

• mTLS Client Certificate Handling Refactor: Centralized the logic for determining Mutual TLS (mTLS) client certificate usage into a new static method, _use_client_cert_effective(), across multiple client libraries. This method adapts to different versions of the google-auth library for automatic mTLS enablement.
• Improved Environment Variable Parsing: Updated client methods, specifically get_mtls_endpoint_and_cert_source() and _read_environment_variables(), to leverage the new centralized logic for parsing the GOOGLE_API_USE_CLIENT_CERTIFICATE environment variable. This change streamlines the validation and usage of this setting.
• Enhanced Test Coverage for mTLS Logic: Added extensive unit tests for the new _use_client_cert_effective() method, covering various scenarios for client certificate usage based on environment variables and google-auth library capabilities. Existing tests were also updated to align with the refactored logic.
• Dependency Version Checks: Introduced Python version and google.protobuf dependency checks within the __init__.py files of several packages. These checks now issue FutureWarning for unsupported or soon-to-be-unsupported versions, promoting proactive dependency management.
• Removed Obsolete Fixup Scripts: Several fixup_*.py scripts, previously used for post-processing or workarounds in client libraries, have been removed. This indicates that the issues they addressed are either resolved or no longer necessary with the updated librarian image.

🧠 New Feature in Public Preview: You can now enable Memory to help Gemini Code Assist learn from your team's feedback. This makes future code reviews more consistent and personalized to your project's style. Click here to enable Memory in your admin console.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request updates the generator image, which has resulted in widespread changes across client libraries, primarily related to mTLS client certificate handling. A new helper method, _use_client_cert_effective, has been introduced to centralize logic and ensure backward compatibility with different versions of the google-auth library. The changes also include extensive new tests for this functionality.

My review focuses on the correctness and maintainability of the generated code. While the core logic appears sound, I've identified several areas for improvement:

• Redundant test cases in both YAML configuration and Python test files.
• Overly broad exception handling in __init__.py files which could mask potential bugs.
• Repetitive conditional checks in test functions that could be refactored for better readability.

Addressing these points would improve the quality and maintainability of the generated code.

[gemini-code-assist]

This block of tests seems to be redundant. The comment says "Test cases for mTLS enablement when GOOGLE_API_USE_CLIENT_CERTIFICATE is unset(empty)", and the code uses env.pop("GOOGLE_API_USE_CLIENT_CERTIFICATE", ""). The preceding block of tests is for when the variable is "unset" and uses env.pop("GOOGLE_API_USE_CLIENT_CERTIFICATE", None). Since the return value of pop is not used, both calls have the same effect: they ensure the environment variable is not present. Therefore, this block of tests is a duplicate of the one from lines 1149-1195. Please consider removing this redundant block.

[gemini-code-assist]

The except Exception is too broad. It can hide bugs that are not related to metadata.version() or parsing. It would be better to catch more specific exceptions, such as metadata.PackageNotFoundError (from importlib.metadata or importlib_metadata) and ValueError.

[gemini-code-assist]

This except Exception is very broad and could mask various unrelated errors within the try block, making debugging harder. If the intention is to handle failures in version checking gracefully, it would be better to either let unexpected exceptions propagate or catch more specific exceptions if known ones are expected. A broad except like this can hide bugs.

[gemini-code-assist]

The if not hasattr(google.auth.transport.mtls, "should_use_client_cert"): check is repeated for multiple test cases (3 through 8). This makes the code verbose and harder to maintain. Consider grouping these test cases under a single if block to improve readability and reduce redundancy.

For example:

    if not hasattr(google.auth.transport.mtls, "should_use_client_cert"):
        # Test case 3
        with mock.patch.dict(os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": "true"}):
            assert AdBreakServiceClient._use_client_cert_effective() is True

        # Test case 4
        with mock.patch.dict(
            os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": "false"}
        ):
            assert AdBreakServiceClient._use_client_cert_effective() is False
        
        # ... and so on for cases 5-8

[gemini-code-assist]

This block of tests appears to be a duplicate of the preceding block (lines 869-915). The comment mentions testing for "unset(empty)", but the code env.pop("GOOGLE_API_USE_CLIENT_CERTIFICATE", "") has the same effect as env.pop("GOOGLE_API_USE_CLIENT_CERTIFICATE", None) from the previous block, as the return value of pop is not used. Both ensure the environment variable is not set. This makes this test block redundant. Please consider removing it to avoid duplicated tests.