chore(ci): surface pyodide test errors via .catch() + fix CI check (#2577)

Co-authored-by: Håkon V. Treider <haakonvt@gmail.com>

Author: ks93

scripts/test-pyodide.js

@@ -37,8 +37,21 @@ server.listen(PORT, () => {
     let pyodide = await loadPyodide();
     await pyodide.loadPackage("micropip");
     const micropip = pyodide.pyimport("micropip");
-    // Read packages to install from environment variable as JSON
 
+    // TEMPORARY WORKAROUND (added 2026-04-19, auto-disables 2026-05-03):
+    // authlib 1.7+ requires cryptography>=45.0.1, which has no pure-Python wheel;
+    // the streamlit-pinned Pyodide 0.26.2 only ships cryptography 43.x, so
+    // micropip resolution fails. Preload Pyodide's built cryptography and cap
+    // authlib below 1.7 to satisfy the transitive requirement. Revisit once
+    // stlite bumps to a Pyodide release that ships cryptography>=45.0.1
+    // (Pyodide 0.29.0 already does). After the expiry date, the workaround is
+    // skipped — if it's still needed the install will fail loudly.
+    if (new Date() < new Date("2026-05-03")) {
+      await pyodide.loadPackage(["cryptography", "ssl"]);
+      await micropip.install("authlib<1.7");
+    }
+
+    // Read packages to install from environment variable as JSON
     const packages = JSON.parse(process.env.PACKAGES);
     for (const pkg of packages) {
       await micropip.install(pkg);
@@ -51,5 +64,9 @@ server.listen(PORT, () => {
   test_cognite_sdk().then((result) => {
     console.log("Response from Python =", result);
     server.close();
+  }).catch((err) => {
+    console.error("Pyodide test failed:", err && err.stack ? err.stack : err);
+    server.close();
+    process.exit(1);
   });
 });