0000-cargo-script.md

• Feature Name: cargo-script
• Start Date: 2023-03-31
• Pre-RFC: internals
• eRFC PR: rust-lang/rfcs#3424
  • Rust Issue: rust-lang/cargo#12207
• RFC PR: rust-lang/rfcs#0000
• Rust Issue: rust-lang/rust#0000

Summary

This RFC adds support for so called single-file bin packages in cargo. Single-file bin packages are .rs files with an embedded manifest and a main. These will be accepted with just like Cargo.toml files with --manifest-path. cargo will be modified to accept cargo <file>.rs as a shortcut to cargo run --manifest-path <file>.rs. This allows placing cargo in a #! line for directly running these files.

Support for single-file lib packages, publishing, and workspace support is deferred out.

Example:

#!/usr/bin/env cargo
```cargo
[dependencies]
clap = { version = "4.2", features = ["derive"] }
```

use clap::Parser;

#[derive(Parser, Debug)]
#[clap(version)]
struct Args {
    #[clap(short, long, help = "Path to config")]
    config: Option<std::path::PathBuf>,
}

fn main() {
    let args = Args::parse();
    println!("{:?}", args);
}

$ ./prog --config file.toml
Args { config: Some("file.toml") }

See -Zscript for a working implementation.

Motivation

Collaboration:

When sharing reproduction cases, it is much easier when everything exists in a single code snippet to copy/paste. Alternatively, people will either leave off the manifest or underspecify the details of it.

This similarly makes it easier to share code samples with coworkers or in books / blogs when teaching.

Interoperability:

One angle to look at including something is if there is a single obvious solution. While there isn't in the case for single-file packages, there is enough of a subset of one. By standardizing that subset, we allow greater interoperability between solutions (e.g. playground could gain support ). This would make it easier to collaborate..

Prototyping:

Currently to prototype or try experiment with APIs or the language, you need to either

• Use the playground
  • Can't access local resources
  • Limited in the crates supported
  • Note: there are alternatives to the playground that might have fewer restrictions but are either less well known or have additional complexities.
• Find a place to do cargo new, edit Cargo.toml and main.rs as necessary, and cargo run it, then delete it
  • This is a lot of extra steps, increasing the friction to trying things out
  • This will fail if you create in a place that cargo will think it should be a workspace member

By having a single-file package,

• It is easier to setup and tear down these experiments, making it more likely to happen
• All crates will be available
• Local resources are available

One-Off Utilities:

It is fairly trivial to create a bunch of single-file bash or python scripts into a directory and add it to the path. Compare this to rust where

• cargo new each of the "scripts" into individual directories
• Create wrappers for each so you can access it in your path, passing --manifest-path to cargo run

Non-Goals:

With that said, this doesn't have to completely handle every use case for Collaboration, Interoperability, Prototuping, or One-off Utilities. Users can always scale up to normal packages with an explicit Cargo.toml file.

Guide-level explanation

Creating a New Package

(Adapted from the cargo book)

To start a new package with Cargo, create a file named hello_world.rs:

#!/usr/bin/env cargo

fn main() {
    println!("Hello, world!");
}

Let's run it

$ chmod +x hello_world.rs
$ ./hello_world.rs
Hello, world!

Dependencies

(Adapted from the cargo book)

crates.io is the Rust community's central package registry that serves as a location to discover and download packages. cargo is configured to use it by default to find requested packages.

Adding a dependency

To depend on a library hosted on crates.io, you modify hello_world.rs:

#!/usr/bin/env cargo
```cargo
[dependencies]
time = "0.1.12"
```

fn main() {
    println!("Hello, world!");
}

The data inside the cargo frontmatter is called a manifest, and it contains all of the metadata that Cargo needs to compile your package. This is written in the TOML format (pronounced /tɑməl/).

time = "0.1.12" is the name of the crate and a SemVer version requirement. The specifying dependencies docs have more information about the options you have here.

If we also wanted to add a dependency on the regex crate, we would not need to add [dependencies] for each crate listed. Here's what your whole hello_world.rs file would look like with dependencies on the time and regex crates:

#!/usr/bin/env cargo
```cargo
[dependencies]
time = "0.1.12"
regex = "0.1.41"
```

fn main() {
    let re = Regex::new(r"^\d{4}-\d{2}-\d{2}$").unwrap();
    println!("Did our date match? {}", re.is_match("2014-01-01"));
}

You can then re-run this and Cargo will fetch the new dependencies and all of their dependencies. You can see this by passing in --verbose:

$ cargo eval --verbose ./hello_world.rs
      Updating crates.io index
   Downloading memchr v0.1.5
   Downloading libc v0.1.10
   Downloading regex-syntax v0.2.1
   Downloading memchr v0.1.5
   Downloading aho-corasick v0.3.0
   Downloading regex v0.1.41
     Compiling memchr v0.1.5
     Compiling libc v0.1.10
     Compiling regex-syntax v0.2.1
     Compiling memchr v0.1.5
     Compiling aho-corasick v0.3.0
     Compiling regex v0.1.41
     Compiling hello_world v0.1.0 (file:///path/to/package/hello_world)
Did our date match? true

Package Layout

(Adapted from the cargo book)

When a single file is not enough, you can separately define a Cargo.toml file along with the src/main.rs file. Run

$ cargo new hello_world --bin

We’re passing --bin because we’re making a binary program: if we were making a library, we’d pass --lib. This also initializes a new git repository by default. If you don't want it to do that, pass --vcs none.

Let’s check out what Cargo has generated for us:

$ cd hello_world
$ tree .
.
├── Cargo.toml
└── src
    └── main.rs

1 directory, 2 files

Unlike the hello_world.rs, a little more context is needed in Cargo.toml:

[package]
name = "hello_world"
version = "0.1.0"
edition = "2021"

[dependencies]

Cargo uses conventions for file placement to make it easy to dive into a new Cargo package:

.
├── Cargo.lock
├── Cargo.toml
├── src/
│   ├── lib.rs
│   ├── main.rs
│   └── bin/
│       ├── named-executable.rs
│       ├── another-executable.rs
│       └── multi-file-executable/
│           ├── main.rs
│           └── some_module.rs
├── benches/
│   ├── large-input.rs
│   └── multi-file-bench/
│       ├── main.rs
│       └── bench_module.rs
├── examples/
│   ├── simple.rs
│   └── multi-file-example/
│       ├── main.rs
│       └── ex_module.rs
└── tests/
    ├── some-integration-tests.rs
    └── multi-file-test/
        ├── main.rs
        └── test_module.rs

• Cargo.toml and Cargo.lock are stored in the root of your package (package root).
• Source code goes in the src directory.
• The default library file is src/lib.rs.
• The default executable file is src/main.rs.
  • Other executables can be placed in src/bin/.
• Benchmarks go in the benches directory.
• Examples go in the examples directory.
• Integration tests go in the tests directory.

If a binary, example, bench, or integration test consists of multiple source files, place a main.rs file along with the extra [modules][def-module] within a subdirectory of the src/bin, examples, benches, or tests directory. The name of the executable will be the directory name.

You can learn more about Rust's module system in the book.

See Configuring a target for more details on manually configuring targets. See Target auto-discovery for more information on controlling how Cargo automatically infers target names.

Reference-level explanation

Reminder: This serves as a starting point for experimentation and Unresolved questions will be worked out through the tracking issues.

Initial guidelines for evaluating decisions:

• Single-file packages should have a first-class experience
  • Provides a higher quality of experience (doesn't feel like a hack or tacked on)
  • Transferable knowledge, whether experience, stackoverflow answers, etc
  • Easier unassisted migration between single-file and multi-file packages
  • The more the workflows deviate, the higher the maintenance and support costs for the cargo team
  • Example implications:
    • Workflows, like running tests, should be the same as multi-file packages rather than being bifurcated
    • Manifest formats should be the same rather than using a specialized schema or data format
• Friction for starting a new single-file package should be minimal
  • Easy to remember, minimal syntax so people are more likely to use it in one-off cases, experimental or prototyping use cases without tool assistance
  • Example implications:
    • Embedded manifest is optional which also means we can't require users specifying edition
    • See also the implications for first-class experience
    • Workspaces for single-file packages should not be auto-discovered as that will break unless the workspaces also owns the single-file package which will break workflows for just creating a file anywhere to try out an idea.
• Cargo/rustc diagnostics and messages (including cargo metadata) should be in terms of single-file packages and not any temporary files
  • Easier to understand the messages
  • Provides a higher quality of experience (doesn't feel like a hack or tacked on)
  • Example implications:
    • Most likely, we'll need single-file packages to be understood directly by rustc so cargo doesn't have to split out the .rs content into a temp file that gets passed to cargo which will cause errors to point to the wrong file
    • Most likely, we'll want to muck with the errors returned by toml_edit so we render manifest errors based on the original source code which will require accurate span information.

Single-file packages

In addition to today's multi-file packages (Cargo.toml file with other .rs files), we are adding the concept of single-file packages which may contain an embedded manifest. There is no required distinguishment for a single-file .rs package from any other .rs file.

A single-file package may contain an embedded manifest. An embedded manifest is stored using TOML in rust "frontmatter", a markdown code-fence with cargo at the start of the infostring at the top of the file.

Inferred / defaulted manifest fields:

• package.name = <slugified file stem>
• package.version = "0.0.0" to call attention to this crate being used in unexpected places
• package.publish = false to avoid accidental publishes, particularly if we later add support for including them in a workspace.
• package.edition = <current> to avoid always having to add an embedded manifest at the cost of potentially breaking scripts on rust upgrades
  • Warn when edition is unspecified. While with single-file packages this will be silenced by default, users wanting stability are also likely to be using other commands, like cargo test and will see it.
  • Based on feedback, we might add cargo-<edition>-edition proxies to put in #! as a shorthand
  • Based on feedback, we can switch to "edition is required as of edition"

Disallowed manifest fields:

• [workspace], [lib], [[bin]], [[example]], [[test]], [[bench]]
• package.workspace, package.build, package.links, package.autobins, package.autoexamples, package.autotests, package.autobenches

As the primary role for these files is exploratory programming which has a high edit-to-run ratio, building should be fast. Therefore CARGO_TARGET_DIR will be shared between single-file packages to allow reusing intermediate build artifacts.

A single-file package is accepted by cargo commands as a --manifest-path

• This is distinguished by the file extension (.rs) and that it is a file.
• This allows running cargo test --manifest-path single.rs
• cargo package / cargo publish will normalize this into a multi-file package
• cargo add and cargo remove may not support editing embedded manifests initially
• Path-dependencies may not refer to single-file packages at this time (they don't have a lib target anyways)

Single-file packages will not be accepted as path or git dependencies.

The lockfile for single-file packages will be placed in CARGO_TARGET_DIR. In the future, when workspaces are supported, that will allow a user to have a persistent lockfile. We may also allow customizing the non-workspace lockfile location in the future.

cargo <file>.rs

cargo is intended for putting in the #! for single-file packages:

#!/usr/bin/env cargo

fn main() {
    println!("Hello world");
}

• Like with cargo install, .cargo/config.toml will be read based on the scripts location rather than the current-dir.
  • And like cargo install, the current-dir rustup-toolchain is respected
• --release is not passed in because the primary use case is for exploratory programming, so the emphasis will be on build-time performance, rather than runtime performance

Most other flags and behavior will be similar to cargo run.

The precedence for cargo foo will change from:

1. built-in commands
2. user aliases
3. third-party commands

to:

1. built-in command xor manifest
2. user aliases
3. third-party commands

To allow the xor, we enforce that

• manifests must be passed in as Cargo.toml, foo.rs, or have a / in them
• no built-in command may look like an accepted manifest

When piping cargo <file>.rs, --quiet will be assumed.

Drawbacks

At the moment, the doc-comment parsing is brittle, relying on regexes, to extract it and then requires a heavy dependency (a markdown parser) to get the code fence.

The implicit content of the manifest will be unclear for users. We can patch over this as best we can in documentation but the result won't be ideal. A user can workaround this with cargo metadata --manifest-path <file>.rs.

The bin.name assigned to the script included a hash as an implementation detail of the shared cache (for improving build times). This makes programmatic choices off of argv[0] not work like normal (e.g. multi-call binaries). We could settings argv[0] on unix-like systems but could not find something similar for Windows.

This increases the maintenance and support burden for the cargo team, a team that is already limited in its availability.

Like with all cargo packages, the target/ directory grows unbounded. Some prior art include a cache GC but that is also to clean up the temp files stored in other locations (our temp files are inside the target/ dir and should be rarer).

Syntax is not reserved for build.rs, [lib] support, proc-maros, embedding additional packages, or other functionality to be added later with the assumption that if these features are needed, a user should be using a multi-file package. As stated in the Motivation, this doesn't have to perfectly cover every use case that a Cargo.toml would.

Rationale and alternatives

Scope

The cargo-script family of tools has a single command

• Run .rs files with embedded manifests
• Evaluate command-line arguments (--expr, --loop)

This behavior (minus embedded manifests) mirrors what you might expect from a scripting environment, minus a REPL. We could design this with the future possibility of a REPL.

However

• The needs of .rs files and REPL / CLI args are different, e.g. where they get their dependency definitions
• A REPL is a lot larger of a problem, needing to pull in a lot of interactive behavior that is unrelated to .rs files
• A REPL for Rust is a lot more nebulous of a future possibility, making it pre-mature to design for it in mind

Therefore, this RFC proposes we limit the scope of the new command to cargo run for single-file rust packages.

Misc

• Rejected: Defaulting to RUST_BACKTRACE=1 for cargo foo.rs runs
  • Enabling backtraces provides more context to problems, much like Python scripts, which helps with experiments
  • This comes at the cost of making things worse for scripts
  • Decided against it to minimize special casing
  • See also t-cargo zulip thread
• The package name is slugified according the stricter cargo new validation rules, making it consistent across platforms as some names are invalid on some platforms
  • See rust-lang/cargo#12255

Naming

Considerations:

• The name should tie it back to cargo to convey that relationship
• The command that is run in a #! line should not require arguments (e.g. not #!/usr/bin/env cargo <something>) because it will fail. env treats the rest of the line as the bin name, spaces included. You need to use env -S but that wasn't supported on macOS at least, last I tested.
• Either don't have a name that looks like a cargo-plugin (e.g. not cargo-<something>) to avoid confusion or make it work (by default, cargo something translates to cargo-something something which would be ambiguous of whether something is a script or subcommand)

Candidates

• cargo-script:
  • Out of scope
  • Verb preferred
• cargo-shell:
  • Out of scope
  • Verb preferred
• cargo-run:
  • This would be shorthand for cargo run --manifest-path <script>.rs
  • Might be confusing to have slightly different CLI between cargo-run and cargo run
  • Could add a positional argument to cargo run but those are generally avoided in cargo commands
• cargo-eval:
  • Currently selected proposal
  • Might convey REPL behavior
  • How do we describe the difference between this and cargo-run?
• cargo-exec
  • How do we describe the difference between this and cargo-run?
• cargo:
  • Mirror Haskell's cabal or D's dub
  • Could run into confusion with subcommands but only if you are trying to run it as cargo <script> without any path separators (like a ./ prefix)
    • With a #!, at minimum a local path must be passed in (e.g. ./ prefix) or the matching PATH element must be prefixed
  • Might affect the quality of error messages for invalid subcommands unless we just assume
  • Restricts access to more complex compiler settings unless a user switches over to cargo run which might have different defaults (e.g. setting RUST_BACKTRACE=1)
  • Forces us to have all commands treat these files equally (e.g. --<edition> solution would need to be supported everywhere).
  • Avoids the risk of overloading a cargo-script-like command to do everything special for single-file packages, whether its running them, expanding them into multi-file packages, etc.

First vs Third Party

As mentioned, a reason for being first-party is to standardize the convention for this which also allows greater interop.

A default implementation ensures people will use it. For example, clap received an issue with a reproduction case using a cargo-play script that went unused because it just wasn't worth installing yet another, unknown tool.

This also improves the overall experience as you do not need the third-party command to replicate support for every potential feature including:

• cargo test and other built-in cargo commands
• cargo expand and other third-party cargo commands
• rust-analyzer and other editor/IDE integration

While other third-party cargo commands might not immediately adopt single-file packages, first-party support for them will help encourage their adoption.

This still leaves room for third-party implementations, either differentiating themselves or experimenting with

• Alternative caching mechanisms for lower overhead
• Support for implicit main, like doc-comment examples
• Template support for implicit main for customizing use, extern, #[feature], etc
• Short-hand dependency syntax (e.g. //# serde_json = "*")
• Prioritizing other workflows, like runtime performance

File association on Windows

We would add a non-default association to run the file. We don't want it to be a default, by default, to avoid unintended harm and due to the likelihood someone is going to want to edit these files.

File extension

Should these files use .rs or a custom file extension?

Reasons for a unique file type

• Semantics are different than a normal .rs file
  • Except already a normal .rs file has context-dependent semantics (rest of source, Cargo.toml, etc), so this doesn't seem too far off
• Different file associations for Windows
• Better detection by tools for the new semantics (particularly rust-analyzer)

Downsides to a custom extension

• Limited support by different tools (rust-analyzer, syntax highlighting, non-LSP editor actions) as adoptin rolls out

At this time, we do not see enough reason to use a custom extension when facing the downsides to a slow roll out.

For Windows, a different file extension doesn't buy us all that much. We could have a "run" action associated with the extension when clicking on the file but the most likely action people would want is to edit, not run, and there might be concern over running code unexpectedly. More interesting is the commandline but we do not know of a accepted equivalent of #! for cmd. Generally, users just reference the interpreter (python x.py) or add a x.bat wrapper.

While rust-analyzer needs to be able to distinguish regular .rs files from single-file packages to look up the relevant manifest to perform operations, we propose that be through checking the #! line (e.g. how perl detects perl in the #!. While this adds boilerplate for Windows developers, this helps encourage cross-platform development.

If we adopted a unique file extensions, some options include:

• .crs (used by cargo-script)
• .ers (used by rust-script)
  • No connection back to cargo
• .rss
  • No connection back to cargo
  • Confused with RSS
• .rsscript
  • No connection back to cargo
  • Unwieldy
• .rspkg
  • No connection back to cargo but conveys its a single-file package

Embedded Manifest Format

Considerations for embedded manifest include

• How obvious it is for new users when they see it
• How easy it is for newer users to remember it and type it out
• How machine editable it is for cargo add and friends
• Needs to be valid Rust code based on the earlier stated design guidelines
• Lockfiles might also need to reuse how we attach metadata to the file

Solution: Code-fence Frontmatter

This is a variation of Alternative 6 but using code fences which was a source of inspiration

#!/usr/bin/env cargo
```cargo
[dependencies]
foo = "1.2.3"
```

fn main() {}

• The first line post-shebang-stripping is 3+ backticks with a cargo infostring, then capture all content until a matching pair of backticks on a dedicated line. This would be captured into a #![frontmatter(info = "cargo", content = "..."]. frontmatter attribute is reserved for crate roots. The 3+ with matching pair is a "just in case" a TOML multi-line string has that syntax in it)
• Future evolution: Allow cargo being the default info string
• Future evolution: Allow any info string with cargo checking for content.starts_with(["cargo", "cargo,"])
• Future evolution: Allow this frontmatter attribute on any module

Benefits

• Visually/syntactically lightweight
• Has parallels to ideas outside of Rust, building on external knowledge that might exist
• Easy for cargo to parse and modify
• Can be leveraged by buck2, meson, etc in the future

Downsides

• People are likely to make mistakes in wrapping these in code fences when posting issues to github (this post originally had the code fence wrong)

The cargo infostring was chosen because

• An alternative is Cargo.toml but infostring language fields are generally an identifier rather than a file name
• An alternative is to specify the cargo payload as an attribute, like cargo,file=Cargo.toml but the language should generally convey the format/schema rather than an attribute
  • This also adds a lot of verbosity to teach, write, and get wrong
• If we add additional frontmatter blocks in the future (like for lockfiles), the manifest block will be needed at minimum and other blocks will likely only be used in 1% of cases the manifest block is present, so we shouldn't hurt the simple, common case for the more advanced, long tail cases.

See also t-lang zulup thread

Alternative 1: Doc-comment

#!/usr/bin/env cargo

//! ```cargo
//! [package]
//! edition = "2018"
//! ```

fn main() {
}

Benefits

• Familiar syntax both to read and write.
• Could use syn to parse to get the syntax correct
• When discussing with a Rust author, it was pointed out many times people preface code with a comment specifying the dependencies (example), this is the same idea but reusable by cargo
• When discussing on forums, people expressed how they had never seen the syntax but instantly were able to understand it

Downsides:

• Might be a bit complicated to do edits (translating between location within toml_edit spans to the location within syn spans)
• Either we expose syns lesser parse errors or we make errors worse by skipping the manifest on error
• Requires pulling in a full markdown parser to extract the manifest
  • Incorrectly formatted markdown would lead to a missing manifest and confusing error messages at best or silent incorrect behavior at worse
• When discussing with a a Rust crash course teacher, it was felt their students would have a hard time learning to write these manifests from scratch
  • Having the explain the overloading of concepts to new users
  • Unpredictable location (both the doc comment and the cargo code block within it)
  • Visual clutter (where clutter is overwhelming already in Rust)

Alternative 2: Macro

#!/usr/bin/env cargo

cargo! {
[package]
edition = "2018"
}

fn main() {
}

Downsides

• The cargo macro would need to come from somewhere (std?) which means it is taking on cargo-specific knowledge
• A lot of tools/IDEs have problems in dealing with macros
• Free-form rust code makes it harder for cargo to make edits to the manifest

Alternative 3: Attribute

#!/usr/bin/env cargo

#![cargo(manifest = r#"
[package]
edition = "2018"
"#)]

fn main() {
}

• cargo could register this attribute or rustc could get a generic metadata attribute
• As an alternative, manifest could a less stringly-typed format but that makes it harder for cargo to parse and edit, makes it harder for users to migrate between single and multi-file packages, and makes it harder to transfer knowledge and experience

Benefits

Downsides

• I posit that this syntax is more intimidating to read and write for newer users
• Users are more forgiving of not understanding the details for structure data in an unstructured format (doc comments / comments) but something that looks meaningful, they will want to understand it all requiring dealing with all of the concepts
• The attribute approach requires explaining multiple "advanced" topics: One teacher doesn't get to teaching any attributes until the second level in his crash course series and two teachers have found it difficult to teach people raw strings
• Attributes look "scary" (and they are in some respects for the hidden stuff they do)

Alternative 4: Presentation Streams

YAML allows several documents to be concatenated together variant presentation streams which might seem familiar as this is frequently used in static-site generators for adding frontmatter to pages. What if we extended Rust's syntax to allow something similar?

#!/usr/bin/env cargo

fn main() {
}

---Cargo.toml
[package]
edition = "2018"

Benefits

• Easiest for machine parsing and editing
• Flexible for other content

Downsides

• Flexible for manifest, lockfile, and other content
• Being new syntax, there would be a lot of details to work out, including
  • How to delineate and label documents
  • How to allow escaping to avoid conflicts with content in a documents
  • Potentially an API for accessing the document from within Rust
• Unfamiliar, new syntax, unclear how it will work out for newer users

Alternative 5: Regular Comment

The manifest can be a regular comment with a header. If we were to support multiple types of content (manifest, lockfile), we could either use multiple comments or HEREDOC.

Open questions

• Which syntax to use
• Which comment types would be supported

Simple header:

#!/usr/bin/env cargo
/* Cargo.toml:
[package]
edition = "2018"
*/

fn main() {
}

HEREDOC:

#!/usr/bin/env cargo
/* Cargo.TOML >>>
[package]
edition = "2018"
<<<
*/

fn main() {
}

Benefits

Downsides

• Unfamiliar syntax
• New style of structured comment for the ecosystem to support with potential compatibility issues
  • This would require a new edition
• Assuming it can't be parsed with syn and either we need to write a sufficiently compatible comment parser or pull in a much larger rust parser to extract and update comments.
  • Like with doc comments, this should map to an attribute and then we'd just start the MVP with that attribute

Alternative 6: Static-site generator frontmatter

This is a subset/specialization of YAML presentation streams that mirrors people's experience with static site generators:

#!/usr/bin/env cargo
---
[package]
edition = "2018"
---

fn main() {
}

• The first line post-shebang-stripping is 3+ dashes, then capture all content until a matching pair of dashes on a dedicated line. This would be captured into a #![frontmatter = ""]. frontmatter attribute is reserved for crate roots. The 3+ with matching pair is a "just in case" a TOML multi-line string has that syntax in it)
• Future evolution: Allow a markdown-like infostring on the frontmatter opening dashes to declare the format with cargo being the default
• Future evolution: Allow frontmatter attribute on any module

Benefits

• Visually/syntactically lightweight
• Has parallels to ideas outside of Rust, building on external knowledge that might exist
• Easy for cargo to parse and modify
• Can be leveraged by buck2, meson, etc in the future

Downsides

• Too general that people might abuse it
• We've extended the frontmatter syntax, undoing some of the "familiarity" benefit
• People are used to YAML going in frontmatter (though some systems allow other syntaxes)
• Doesn't feel very rusty

Alternative 7: Extended Shebang

This is a variation of Solution but trying to tie it closer to the shebang syntax in mentally and in the hopes that we can get buy-in from other languages.

#!/usr/bin/env cargo
# ```cargo
# [dependencies]
# foo = "1.2.3"
# ```

fn main() {}

• The first line post-shebang-stripping is a hash plus 3+ backticks, then capture all content until a matching pair of backticks on a dedicated line. This would be captured into a #![frontmatter(info = "cargo", content = "..."]. frontmatter attribute is reserved for crate roots. The 3+ with matching pair is a "just in case" a TOML multi-line string has that syntax in it). Each content line must be indented to at least the same level as the first backtick.
• Future evolution: Allow cargo being the default info string
• Future evolution: Allow any info string with cargo checking for content.starts_with(["cargo", "cargo,"])
• Future evolution: Allow frontmatter attribute on any module

Benefits

• Visually connected to the shebang
• Has parallels to ideas outside of Rust, building on external knowledge that might exist
• Easy for cargo to parse and modify
• Can be leveraged by buck2, meson, etc in the future
• Maybe we can get others on board with this syntax

Downsides

• More syntactically heavy than Solution
  • Visually
  • More work to type it out / copy-paste
  • More to get wrong

edition

The edition field controls what variant of cargo and the Rust language to use to interpret everything.

A policy on this needs to balance

• Matching the expectation of a reproducible Rust experience
• Users wanting the latest experience, in general
• Boilerplate runs counter to experimentation and prototyping, particularly in the "no dependencies" case
  • A cargo new --script (flag TBD) could help reduce writing of boilerplate.
• There might not be a backing file if we read from stdin

Solution: Latest as Default

Default to the edition for the current cargo version, assuming single-file packages will be transient in nature and users will want the current edition. However, we will produce a warning when no edition is specified, nudging people towards reproducible code.

This keeps the boilerplate low for

• Bug reproduction (ideally these are short-lived and usually you can tell from the timeframe)
• Throwaway scripts

The warning will help longer term scripts and "warning free" educational material be reproducible.

Longer term, workspace support (future possibility) will also help drive people to setting the edition, especially if we do implicit inheritance.

#!/usr/bin/env cargo

fn main() {
}

Note: this is a reversible decision on an edition boundary

Disposition: Selected as it offers low overhead while supporting our effort with editions. If we learn this doesn't work as well as we want, this would allow us to switch to requiring the edition in the future.

See also t-cargo zulip thread

Alternative 1: No default but error

It is invalid for an embedded manifest to be missing edition, erroring when it is missing.

The minimal single-package file would end up being:

#!/usr/bin/env cargo
```cargo
[package]
edition = "2018"
```

fn main() {
}

This dramatically increases the amount of boilerplate to get a single-file package going.

This also runs counter to how we are handling most manifest changes, where we require less information, rather than more.

Note: this is a reversible decision on an edition boundary

Disposition: Rejected for now due to the extra boilerplate for throwaway scripts and not following out pattern of how we are handling manifests differently than Cargo.toml. We might switch to this in the future if we find that the "latest as default" doesn't work as well as we expected.0

Alternative 2: cargo-<edition>-edition variants

#!/usr/bin/env cargo-2018-edition

fn main() {
}

single-file packages will fail if used by cargo-<edition> and package.edition are both specified. This still needs a decision for when neither is specified.

On unix-like systems, these could be links to cargo can parse argv[0] to extract the edition.

However, on Windows the best we can do is a proxy to redirect to cargo.

Over the next 40 years, we'll have dozen editions which will bloat the directory, both in terms of the number of files (which can slow things down) and in terms of file size on Windows.

This might also make shell completion of cargo noiser than what we have today with third-part plugins.

Dispition: Deferred and we'll re-evvaluate based on feedback

Alternative 3: cargo --edition <YEAR>

Users can do:

#!/usr/bin/env -S cargo --edition 2018

fn main() {
}

Disposition: Rejected because the -S flag is not portable across different /usr/bin/env implementations

Alternative 4: Fixed Default

Multi-file packages default the edition to 2015, effectively requiring every project to override it for a modern rust experience. We could set it the edition the feature is stablized in (2021?) but that is just kicking the can down the road. People are likely to get this by running cargo new and could easily forget it otherwise.

```cargo
[package]
edition = "2018"
```

fn main() {
}

Note: this is a one-way door, we can't change the decision in the future based on new information.

Disposition: Rejected because this effectively always requires the edition to be set

Alternative 5: Auto-insert latest

When the edition is unspecified, we edit the source to contain the latest edition.

#!/usr/bin/env cargo

fn main() {
}

is automatically converted to

#!/usr/bin/env cargo
```cargo
[package]
edition = "2018"
```

fn main() {
}

This won't work for the stdin case.

Disposition: Rejected because implicitly modifying user code, especially while being edited, is a poor experience.

Prior art

Rust, same space

• cargo-script
  • Single-file (.crs extension) rust code
    • Partial manifests in a cargo doc comment code fence or dependencies in a comment directive
    • run-cargo-script for she-bangs and setting up file associations on Windows
  • Performance: Shares a CARGO_TARGET_DIR, reusing dependency builds
  • --expr <expr> for expressions as args (wraps in a block and prints blocks value as {:?} )
    • --dep flags since directives don't work as easily
  • --loop <expr> for a closure to run on each line
  • --test, etc flags to make up for cargo not understanding thesefiles
  • --force to rebuildand--clear-cache`
  • Communicates through scripts through some env variables
• cargo-scripter
  • See above with 8 more commits
• cargo-eval
  • See above with a couple more commits
• rust-script
  • See above
  • Changed extension to .ers / .rs
  • Single binary without subcommands in primary case for ease of running
  • Implicit main support, including async main (different implementation than rustdoc)
  • --toolchain-version flag
• cargo-play
  • Allows multiple-file scripts, first specified is the main
  • Dependency syntax //# serde_json = "*"
  • Otherwise, seems like it has a subset of cargo-scripts functionality
• cargo-wop
  • cargo wop is to single-file rust scripts as cargo is to multi-file rust projects
  • Dependency syntax is a doc comment code fence

Rust, related space

• Playground
  • Includes top 100 crates
• Rust Explorer
  • Uses a comment syntax for specifying dependencies
• runner
  • Global Cargo.toml with dependencies added via runner --add <dep> and various commands / args to interact with the shared crate
  • Global, editable prelude / template
  • -e <expr> support
  • -i <expr> support for consuming and printing iterator values
  • -n <expr> runs per line
• evcxr
  • Umbrella project which includes a REPL and Jupyter kernel
  • Requires opting in to not ending on panics
  • Expressions starting with : are repl commands
  • Limitations on using references
• irust
  • Rust repl
  • Expressions starting with : are repl commands
  • Global, user-editable prelude crate
• papyrust
  • Not single file; just gives fast caching for a cargo package

D

• rdmd
  • More like rustc, doesn't support package-manager dependencies?
  • --eval=<code> flag
  • --loop=<code> flag
  • --force to rebuild
  • --main for adding an empty main, e.g. when running a file with tests
• dub
  • dub hello.d is shorthand for dub run --single hello.d
  • Regular nested block comment (not doc-comment) at top of file with dub.sdl: header

Java

• JEP 330: Launch Single-File Source-Code Programs
• jbang
  • jbang init w/ templates
  • jbang edit support, setting up a recommended editor w/ environment
  • Discourages #! and instead encourages looking like shell code with ///usr/bin/env jbang "$0" "$@" ; exit $?
  • Dependencies and compiler flags controlled via comment-directives, including
    • //DEPS info.picocli:picocli:4.5.0 (gradle-style locators)
      • Can declare one dependency as the source of versions for other dependencies (bom-pom)
    • //COMPILE_OPTIONS <flags>
    • //NATIVE_OPTIONS <flags>
    • //RUNTIME_OPTIONS <flags>
  • Can run code blocks from markdown
  • --code flag to execute code on the command-line
  • Accepts scripts from stdin

Kotlin

• kscript (subset is now supported in Kotlin)
  • Uses an annotation/attribute-like syntqx

.NET

• dotnet-script
  • # repl directives can appear on lines following #!

Haskell

• runghc / runhaskell
  • Users can use the file stem (ie leave off the extension) when passing it in
• cabal's single-file haskel script
  • Command is just cabal, which could run into weird situations if a file has the same name as a subcommand
  • Manifest is put in a multi-line comment that starts with cabal:
  • Scripts are run with --quiet, regardless of which invocation is used
  • Documented in their "Getting Started" and then documented further under cabal run.
• stack script
  • stack acts as a shortcut for use in #!
  • Delegates resolver information but can be extended on the command-line
  • Command-line flags may be specified in a multi-line comment starting with stack script

Bash

• bash to get an interactive way of entering code
• bash file will run the code in file, searching in PATH if it isn't available locally
• ./file with #!/usr/bin/env bash to make standalone executables
• bash -c <expr> to try out an idea right now
• Common configuration with rc files, --rcfile <path>

Python

• python to get an interactive way of entering code
• python -i ... to make other ways or running interactive
• python <file> will run the file
• ./file with #!/usr/bin/env python to make standalone executables
• python -c <expr> to try out an idea right now
• Can run any file in a project (they can have their own "main") to do whitebox exploratory programming and not just blackblox

Go

• gorun attempts to bring that experience to a compiled language, go in this case
  • gorun <file> to build and run a file
  • Implicit garbage collection for build cache
  • Project metadata is specified in HEREDOCs in regular code comments

Perl

• Re-interprets the #!

Ruby

• bundler/inline
  • Uses a code-block to define dependencies, making them available for use

Cross-language

• scriptisto
  • Supports any compiled language
  • Comment-directives give build commands
• nix-script
  • Nix version of scriptisto, letting you use any Nix dependency

See also Single-file scripts that download their dependencies

Unresolved questions

Future possibilities

Note: we are assuming the following are not future possibilities in this design

• Embedding build scripts
• Embedding .cargo/config.toml files
• Embedding rustup-toolchain.toml files
• Embedding other source files or additional packages

Dealing with leaked target/

As target/ is out of sight, it is easy to "leak" them, eating up disk space. Users would need to know to run cargo clean --manifest-path foo.rs before deleting foo.rs or to just do rm -rf ~/.cargo/target and wipe everything (since the specific target directory will be non-obvious).

In the future we can track embedded manifests and garbage collect their target/.

cargo new support

A cargo new <flag> foo.rs could generate a source file with an embedded manifest.

Questions

• Should we do this implicitly with the .rs extension?
• If we have a flag, what should we name it?

A shorter flag for --manifest-path

Cargo users are used to the --manifest-path argument being inferred from their current working directory but that doesn't work for embedded manifests.

It would be helpful if we had an alias for this argument to make it easier to specify, whether it was a short word for a "short flag".

Options include

• --script with -s or -S for a short flag, but is the meaning clear enough? What about in the context of multi-file packages taking advantage of it?
• p is taken by --package
• -m, -M, and -P are available, but are the meanings clear enough?

Cleaner output

cargo foo.rs is just a wrapper around cargo run --manifest-path foo.rs and cargo can be quite noisy. The out-of-tree prototype for this instead ran cargo run --quiet --manifest-path foo.rs but that was confusing as it is unclear when a long execution time is from a slow compile or from the program.

In the future, we could try to find ways to better control cargo's output so at least cargo foo.rs is less noisy but appears responsive.

See t-cargo zulip thread and rust-lang/cargo#8889.

Note: --quiet is inferred when piping to a file (rust-lang/cargo#12305)

Executing <stdin>

We could extend this to allow accepting single-file packages from stdin, either explicitly with - or implicitly when <stdin> is not interactive.

Implicit main support

Like with doc-comment examples, we could support an implicit main.

Ideally, this would be supported at the language level

• Ensure a unified experience across the playground, rustdoc, and cargo
• cargo can directly run files rather than writing to intermediate files
  • This gets brittle with top-level statements like extern (more historical) or bin-level attributes

Behavior can be controlled through editions

[lib] support

In an effort to allow low-overhead packages in a workspace, we may also allow [lib]s to be defined.

A single-file package may only be a [bin] or a [lib] and not both.

We would support depending on these, publishing them, etc.

We could add support for this in the future by

• Using syn to check if a top-level main function exists (this is mutually exclusive with implicit main)
• Check the manifest for an empty [lib] table

Workspace Support

Allow scripts to be members of a workspace.

The assumption is that this will be opt-in, rather than implicit, so you can easily drop one of these scripts anywhere without it failing because the workspace root and the script don't agree on workspace membership. To do this, we'd expand package.workspace to also be a bool to control whether a workspace lookup is disallowed or whether to auto-detect the workspace

• For Cargo.toml, package.workspace = true is the default
• For single-file packages, package.workspace = false is the default

When a workspace is specified

• Use its target directory
• Use its lock file
• Be treated as any other workspace member for cargo <cmd> --workspace
• Check what workspace.package fields exist and automatically apply them over default manifest fields
• Explicitly require workspace.dependencies to be inherited
  • I would be tempted to auto-inherit them but then cargo rms gc will remove them because there is no way to know they are in use
• Apply all profile and patch settings

This could serve as an alternative to cargo xtask with scripts sharing the lockfile and target/ directory.

Scaling up

We provide a workflow for turning a single-file package into a multi-file package, on cargo-new / cargo-init. This would help smooth out the transition when their program has outgrown being in a single-file.

A REPL

See the REPL exploration

In terms of the CLI side of this, we could name this cargo shell where it drops you into an interactive shell within your current package, loading the existing dependencies (including dev). This would then be a natural fit to also have a --eval <expr> flag.

Ideally, this repl would also allow the equivalent of python -i <file>, not to run existing code but to make a specific file's API items available for use to do interactive whitebox testing of private code within a larger project.

Embedded or adjacent Lockfile

Lockfiles record the exact version used for every possible dependency to ensure reproducibility. In particular, this protects against upgrading to broken versions and allows continued use of a yanked version. As this time, the recommendation is for bins to persist their lockfile while libs do not.

With multi-file packages, cargo writes a Cargo.lock file to the package directory. As there is no package directory for single-file packages, we need to decide how to handle locking dependencies.

Considerations

• Sharing of single-file projects should be easy
  • In "copy/paste" scenarios, like reproduction cases in issues, how often have lockfiles been pertinent for reproduction?
• There is an expectation of a reproducible Rust experience
• Dropping of additional files might be frustrating for users to deal with (in addition to making it harder to share it all)
• We would need a way to store the lockfile for stdin without conflicting with parallel runs
• cargo already makes persisting of Cargo.lock optional for multi-file packages, encouraging not persisting it in some cases
• Newer users should feel comfortable reading and writing single-file packages
• A future possibility is allowing single-file packages to belong to a workspace at which point they would use the workspace's Cargo.lock file. This limits the scope of the conversation and allows an alternative to whatever is decided here.
• Read-only single-file packages (e.g. running /usr/bin/package.rs without root privileges)

Disposition: Deferred. We feel this can be handled later, either by checking for a manifest field, like workspace.lock, or by checking if the lock content exists (wherever it is stored). The main constraint is that if we want to embed the lock content in the .rs file, we leave syntactic room for it.

Location 1: In CARGO_TARGET_DIR

The path would include a hash of the manifest to avoid conflicts.

• Transient location, lost with a cargo clean --manifest-path foo.rs
• Hard to find for sharing on issues, if needed

Location 2: In $CARGO_HOME

The path would include a hash of the manifest to avoid conflicts.

• Transient location though not lost with cargo clean --manifest-path foo.rs
• No garbage collection to help with temporary source files, especially stdin

Location 3: As <file-stem>.lock

Next to <file-stem>.rs, we drop a <file-stem>.lock file. We could add a _ or . prefix to distinguish this from the regular files in the directory.

• Users can discover this file location
• Users can persist this file to the degree of their choosing
• Users might not appreciate file "droppings" for transient cases
• When sharing, this is a separate file to copy though its unclear how often that would be needed
• A policy is needed when the location is read-only
  • Fallback to a user-writeable location
  • Always re-calculate the lockfile
  • Error

Location 4: Embedded in the source

Embed in the single-file package the same way we do the manifest. Resolving would insert/edit the lockfile entry. Editing the file should be fine, in terms of rebuilds, because this would only happen in response to an edit.

• Users can discover the location
• Users are forced to persist the lock content if they are persisting the source
• This will likely be intimidating for new users to read
• This will be more awkward to copy/paste and browse in bug reports as just a serde_json lockfile is 89 lines long
• This makes it harder to resolve conflicts (users can't just checkout the old file and have it re-resolved)
• A policy is needed when the location is read-only
  • Fallback to a user-writeable location
  • Always re-calculate the lockfile
  • Error

Configuration 1: Hardcoded

Unless as a fallback due to a read-only location, the user has no control over the lockfile location.

Configuration 2: Command-line flag

cargo generate-lockfile --manifest-path <file>.rs would be special-cased to write the lockfile to the persistent location and otherwise we fallback to a no-visible-lockfile solution.

• Passing flags in a #! doesn't work cross-platform

Configuration 3: A new manifest field

We could add a workspace.lock field to control some lockfile location behavior, what that is depends on the location on what policies we feel comfortable making. This means we would allow limited access to the [workspace] table (currently the whole table is verboten).

• Requires manifest design work that is likely specialized to just this feature

Configuration 4: Exitence Check

cargo can check if the lockfile exists in the agreed-to location and use it / update it and otherwise we fallback to a no-visible-lockfile solution. To initially opt-in, a user could place an empty lockfile in that location

Format 1: Cargo.lock

We can continue to use the existing Cargo.lock.

At this time, just pulling in clap and tokio includes 51 [[package]] tables and takes up 419 lines. This is fine for being an adjacent file but might be overwhelming for being embedded. We might want to consider ways of reducing redundancy. However, at best we can drop the file to 51, 102, or 153 lines (1-3 per package) which can still be overwhelming.

Format 2: Minimal Versions

Instead of tracking a distinct lockfile, we can get most of the benefits with -Zminimal-versions.

• Consistent runs across machines without a lockfile
• More likely to share versions across single-file packages, allowing more reuse within the shared build cache
• Deviates from how resolution typically happens, surprising people
• Not all transitive dependencies have valid version requirements

Format 3: Timestamp

If we record timestamps with package publishes, we could resolve to a specific timestamp for registry packages.

Challenges:

• Cargo preserves existing resolved versions when dealing with a new or modified dependency or cargo update -p.
• Non-registry dependenciess.

If we want this to be near-lossless, it seems like we'd need

• An edit log, rather than simple timestamps
• Regular lockfile entries for non-registry dependencies

See also Cargo time machine (generate lock files based on old registry state)