Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Support other Python packaging formats #73

Closed
1 of 3 tasks
woodruffw opened this issue Oct 21, 2021 · 5 comments
Closed
1 of 3 tasks

Support other Python packaging formats #73

woodruffw opened this issue Oct 21, 2021 · 5 comments
Labels
component:dep-sources Dependency sources pri:low low(er) priority tasks
Milestone

Comments

@woodruffw
Copy link
Member

woodruffw commented Oct 21, 2021

Outside of requirements.txt, there are a few other common Python packaging files:

Each of these functionally boils down to a RequirementsSource, but with a bit of pre-processing to get them out of their dedicated formats.

@woodruffw
Copy link
Member Author

This was in the original SoW but indicated that it wasn't high in priority, so I'm marking it as potentially follow-on for now.

@woodruffw woodruffw added this to the Handoff/Follow-on milestone Oct 21, 2021
@di
Copy link
Member

di commented Oct 26, 2021

One slight complication for poetry here is that it currently requires packaging<21.0,>=20.4 whereas we require:

https://github.com/trailofbits/pip-audit/blob/cd4dd0825fcff3153d7bcd8ea320dc6f13377f14/setup.py#L32

@di
Copy link
Member

di commented Oct 26, 2021

Let's split this into separate issues for each of these.

@woodruffw
Copy link
Member Author

Broken out, I turned this issue into a checkbox tracker for each sub-issue.

@woodruffw woodruffw added pri:low low(er) priority tasks component:dep-sources Dependency sources labels Oct 27, 2021
@woodruffw
Copy link
Member Author

Closing in favor of subissues, since we don't really need a roadmap-type tracker here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
component:dep-sources Dependency sources pri:low low(er) priority tasks
Projects
None yet
Development

No branches or pull requests

2 participants