1. Check out and go: Install prerequisite dependencies

The first step in setting up our local development environment is running the go script to install host-level prerequisite dependencies. To begin, clone your forked repository:

$ git clone https://github.com/YOUR_USERNAME/loan-default-prediction

Alternatively, you can clone the original repository, but you won’t be able to see your code changes running on GitHub Actions when you push your changes:

$ git clone https://github.com/davified/loan-default-prediction

Readers working on Mac or Linux machines can now run the go script. This might take a while if you’re installing some of the OS-level dependencies for the first time, so make yourself a nice drink while you wait:

# Mac users
$ scripts/go/go-mac.sh

# Linux users
$ scripts/go/go-linux-ubuntu.sh

At this stage, Windows users should follow these steps:

1. Download and install Python3 if not already installed. During installation, when prompted, select Add Python to PATH.

2. In Windows explorer/search, go to Manage App Execution Aliases and turn off App Installer for Python. This resolves the issue where the python executable is not found in the PATH.

3. Run the following go script in the PowerShell or command prompt terminal:

   .\scripts\go\go-windows.bat

   If you see an HTTPSConnectionPool read timed out error, just run this command a few more times until poetry install succeeds.

The next step, regardless of which operating system you’re on, is to install Docker Desktop, if it’s not already installed. While this can be done in one line as part of the go script for Mac and Linux (see example go script for Mac), it was too complicated to automate in the Windows go script. As such, we’ve decided to keep this as a manual step outside of the go script for symmetry. Follow Docker’s online installation steps.

It’s important that we keep these go scripts succinct and avoid installing too many host-level dependencies. Otherwise, it will be hard to maintain these scripts over time for multiple operating systems. We want to keep as many of our dependencies in Docker as possible.

2. Create our local development environment

Next, we’ll install all the OS-level and application-level dependencies needed for developing the ML model locally. We’ll do that in one command: ./batect setup. As promised earlier, this is where we explain how batect works. Figure 4-2 explains the three steps that are happening behind the scenes.

Figure 4-2. What happens when you run a batect task

As visualized in Figure 4-2, when we run ./batect setup, batect executes the setup task, which we defined in batect.yml. The setup task is simply defined as: run ./scripts/setup.sh in the dev container. Let’s look at how this is defined in batect.yml:

# Ensure Docker runtime is started (either via Docker Desktop or colima)

# install application-level dependencies
$ ./batect --output=all setup 

# batect.yml
containers:
 dev: 
   build_directory: .
   volumes:
     - local: .
       container: /code
     - type: cache
       name: python-dev-dependencies
       container: /opt/.venv
   build_target: dev

tasks:
 setup:  
   description: Install Python dependencies
   run:
     container: dev
     command: ./scripts/setup.sh

This is how we execute a batect task (e.g., setup). The --output=all option shows us the logs of the task while it’s executing. This provides visual feedback, which is especially useful for long-running tasks like dependency installation and model training.

This container block defines our dev image. This is where we specify Docker build-time and runtime configurations, such as volumes or folders to mount, the path to the Dockerfile—i.e., build_directory—and build targets for multistage Dockerfiles like ours. Once batect builds this dev image, it will be reused by any subsequent batect tasks that specify this image (e.g., smoke-test-model-training, api-test, and start-api-locally). As such, we won’t need to wait for lengthy rebuilds.

This task block defines our setup task, which consists of two simple parts: what command to run and what container to use when running the command. We can also specify additional Docker runtime configuration options, such as volumes and ports.

Let’s look a little deeper into the second step, and see how we’ve configured our Dockerfile:

FROM python:3.10-slim-bookworm AS dev 

WORKDIR /code 

RUN apt-get update && apt-get -y install gcc 

RUN pip install poetry
ADD pyproject.toml /code/
RUN poetry config installer.max-workers 10
ARG VENV_PATH
ENV VENV_PATH=$VENV_PATH
ENV PATH="$VENV_PATH/bin:$PATH" 

CMD ["bash"] 

We specify the base image that will form the base layer of our own image. The python:3.10-slim-bookworm image is 145 MB, as opposed to python:3.10, which is 915 MB. At the end of this chapter, we will describe the benefits of using small images.

The WORKDIR instruction sets a default working directory for any subsequent RUN, CMD, ENTRYPOINT, COPY, and ADD instructions in the Dockerfile. It is also the default starting directory when we start the container. You can set it to be any directory you’d like, as long as you’re consistent. In this example, we set /code as our working directory and that’s where we will place our code when we start our container in the next step.

We install gcc (GNU Compiler Collection) to handle the scenario where maintainers of a particular Python library neglect to publish a wheel for a given CPU instruction. With gcc, even if a Python package has wheels for one type of CPU (e.g., Intel processor) but the maintainers neglected to publish wheels for another type (e.g., M1 processors), we can ensure that we can build the wheels from source in this step.¹

In this block, we install and configure Poetry. We tell Poetry to install the virtual environment in the project directory (/opt/.venv) and add the path to the virtual environment to the PATH environment variable, so that we can run Python commands in containers without needing to activate the virtual environment (e.g., using poetry shell, or poetry run ...).

Finally, the CMD instruction provides a default command to execute when we start a container. In this example, when our Docker image runs as a container, it will start a bash shell for us to run our development tasks. This is just a default and we can override this command when we run our containers later on.

One of the great things about Docker is that there is no magic: You state step by step in Dockerfile what you want in the Docker image, and docker build will run each instruction and “bake” in an image based on the “recipe” (Dockerfile) you provide.

3. Start our local development environment

Now, we can get into our local development environment by starting the container:

# start container (with batect)

$ ./batect start-dev-container 

# start container (without batect). You don’t have to run this command. 
# We’ve included it so that you can see the simplified interface that 
# batect provides

$ docker run -it \ 
      --rm \ 
      -v $(pwd):/code \ 
      -p 80:80 \ 
      loan-default-prediction:dev  

This batect task runs our dev container (i.e., a containerized bash shell that forms our development environment). The Docker runtime parameters are encapsulated in the batect task, as defined in batect.yml, so we can run the task without carrying the heavy implementation details you see in the docker run version of the same task.

-it is short for -i (--interactive) and -t (--tty, TeleTYpewriter) and allows you to interact (i.e., write commands and/or read outputs) with the running container via the terminal.

--rm tells Docker to automatically remove the container and file system when the container exits. This is a good habit to prevent lingering container file systems from piling up on the host.

-v $(pwd):/code tells the container to mount a directory (or volume) from the host ($(pwd) returns the path of the current working directory) onto a target directory (/code) in the container. This mounted volume is kept in sync, so that any changes you make inside or outside the container are kept in sync.

-p X:Y tells Docker to publish port X in the Docker container onto port Y on the host. This allows you to send requests from outside the container to a server running inside the container on port 80.

This is the image that we want to use to start the container. Because we have specified the default command to run in our Dockerfile (CMD ["bash"]), the resulting container is a bash process, which we will use to run our development commands.

Inside of our development container, we can now run tasks or commands that we typically use when developing ML models. To keep these commands readable and simple, we’ve kept the implementation details in short bash scripts, which you can read if you’d like:

# run model training smoke tests
$ scripts/tests/smoke-test-model-training.sh

# run api tests
$ scripts/tests/api-test.sh

# train model
$ scripts/train-model.sh

Alternatively, you could also run these commands from the host, using batect. Thanks to Docker’s caching mechanism, running these tasks is equally fast regardless of whether you run them from inside a container, or start a fresh container each time from the host. These batect tasks make it easy to define tasks on our CI pipeline and make it easy to reproduce CI failures locally. This is how you can run common ML development tasks using batect:

# run model training smoke tests
$ ./batect smoke-test-model-training

# run api tests
$ ./batect api-test

# train model
$ ./batect train-model

5. Configure our code editor

An essential step in dependency management is configuring our code editor to use the project’s virtual environment, so that it can help us write code more efficiently. When the code editor has been configured to use a given virtual environment, it becomes a very powerful tool and can provide sensible hints and suggestions as you type.

In Chapter 7, we describe how you can achieve this in two simple steps:

1. Specify the virtual environment in our code editor. See instructions for PyCharm and VS Code, or take a peek at the steps in Chapter 7—it should take only a few minutes.

2. Leverage code editor commands and corresponding keyboard shortcuts to do amazing things (e.g., code completion, parameter info, inline documentation, refactoring, and much more). We’ll go through these shortcuts in detail in Chapter 7.

For step 1, you can use the path to the virtual environment installed by the go script on the host. The go script displays this as its last step. You can also retrieve the path by running the following command in the project directory outside the container:

$ echo $(poetry env info -p)/bin/python

This is a second—and duplicate—virtual environment outside of the container because configuring a containerized Python interpreter for PyCharm is a paid feature, and is not exactly straightforward for VS Code. Yes, this is a deviation from containers! In practice, we would pay for the PyCharm professional license because it’s simple and relatively low-cost, and we would continue to use a single containerized virtual environment for each project. However, we didn’t want the price to be a barrier to our readers. So, we came up with this workaround so that anyone can follow along.

6. Train model on the cloud

There are many options for training ML models on the cloud. They can range from open source and self-hosted ML platforms—such as Metaflow, Kubeflow, and Ray—to managed services such as AWS SageMaker, Google Vertex AI, and Azure Machine Learning, among many others. To keep this example simple and generalizable, we’ve opted for the simplest possible option: train the model on a CI compute instance using GitHub Actions. Training our model on the CI pipeline may not provide the many affordances or compute resources that an ML platform provides, but it will suffice for the purposes of this exercise.

Training our model on a CI pipeline is similar to training it using these ML services in one regard: we are training a model on ephemeral compute instances on the cloud. As such, we can use Docker to install and configure the necessary dependencies on a fresh instance. You will likely choose a different technology, especially if you’re doing large-scale training. Most, if not all, of these ML platforms support, and have supporting documentation for, running model training in containers.

In our example, we deploy our model training code simply by pushing our code to the repository.² The following code sample will create a CI/CD pipeline using GitHub Actions to run a Docker command to train our model, which you can see via the GitHub Actions tab on your forked repo. This runs model training on a CI/CD server instance without us needing to fiddle with shell scripts to install OS-level dependencies—such as Python 3.x, Python dev tools, or gcc—on the fresh CI instance. This is where Docker really shines: Docker abstracts away most “bare metal” concerns of running code on a remote compute instance and allows us to easily reproduce consistent runtime environments.

# .github/workflows/ci.yaml

name: CI/CD pipeline
on: [push]
jobs:
  # ...
  train-model:
    runs-on: ubuntu-20.04
    steps:
      - uses: actions/checkout@v3
      - name: Train model
        run: ./batect train-model  

# batect.yml
containers:
  dev:
    ...

tasks:
  train-model:
    description: Train ML model
    run:
      container: dev
      command: scripts/train-model.sh

This defines a step in our CI pipeline to run the batect task, ./batect train-model.

7. Deploy model web API

In this step, we will: (i) publish our model API image to a container registry and (ii) run a command to tell our cloud service provider to deploy an image with a specific tag. At this stage, the only dependency we need is infrastructure related—e.g., aws-cdk (AWS), gcloud (GCP), azure-cli (Azure), Terraform. We do not need any of the dependencies from our development container, so it’s best that we specify a separate image for the purpose of deploying an image as a web service.

To make this code sample simple and generalizable regardless of which cloud provider you are using, we have opted to illustrate this step with pseudo-code:

# .github/workflows/ci.yaml

name: CI/CD pipeline
on: [push]
jobs:  

  # ... other jobs (e.g. run tests)

  publish-image:
    runs-on: ubuntu-20.04
    steps:
      - uses: actions/checkout@v3
      - name: Publish image to docker registry
        run: docker push loan-default-prediction-api:${{github.run_number}}

  deploy-api:
    runs-on: ubuntu-20.04
    steps:
      - uses: actions/checkout@v3
      - name: Deploy model
        run: ./batect deploy-api
    needs: [publish-image]

# batect.yml
containers:
  deploy-api-container:
    image: google/cloud-sdk:latest 


tasks:
  deploy-api:
    description: Deploy API image
    run:
      container: deploy-api-container
      command: gcloud run deploy my-model-api --image IMAGE_URL 

Pseudo-code for: (i) pushing our image from our CI/CD pipeline to a Docker registry and (ii) deploying this image as an API. We would typically need to retag the image to include the specific Docker image registry, but we have left out this detail to keep the example simple.

For the deployment step, we didn’t need any of the dependencies from our model training and serving, but we do need a dependency (e.g., gcloud, aws-cli, azure-cli, Terraform) that helps us deploy our image to a container hosting service. Did you notice how we didn’t need to specify another Dockerfile? That is because batect allows us to define tasks with prebuilt images using the image option. Thanks to containers and batect, we can run this task in the same way on CI or on our local machine, simply by running ./batect deploy-api.

Pseudo-code for deploying a Docker image to a container hosting technology. You would replace this with the corresponding command for the cloud provider that you are using (e.g., AWS, Azure, GCP, Terraform).

In the preceding paragraph, we’re referencing several new concepts such as the container registry and cloud container hosting services. If this sounds overwhelming, fret not—we will describe these building blocks in an ML model’s path to production in Chapter 9.

Well done! By this stage, you have learned how to reliably create consistent environments for developing and deploying ML models. The principles, practices, and patterns in this code repository are what we use in real-world projects to bootstrap a new ML project repository with good practices baked in.

Next, let’s look at two other essential practices that can help you securely manage dependencies in your projects.