dependabot-core icon indicating copy to clipboard operation
dependabot-core copied to clipboard

Published 20 hours ago verified publisher icon dependabot

poetry upgrades fail if pyproject.toml contains an empty key.

Open dreid opened this issue 4 months ago • 0 comments

Is there an existing issue for this?

  • [X] I have searched the existing issues

Package ecosystem

pip

Package manager version

No response

Language version

No response

Manifest location and content before the Dependabot update

No response

dependabot.yml content

No response

Updated dependency

No response

What you expected to see, versus what you actually saw

Expected to see dependabot update dependencies, instead the updater crashed with the following error:

updater | 2024/01/29 21:15:53 ERROR Failed to parse input on line 191 at offset 1
updater |  = "src"

This is due to a long-standing bug with toml-rb failing to properly dump empty keys which has been fixed in toml-rb 3.0.1

https://github.com/emancu/toml-rb/releases/tag/v3.0.1

Native package manager behavior

No response

Images of the diff or a link to the PR, issue, or logs

No response

Smallest manifest that reproduces the issue

[tool.setuptools]
package-dir = {"" = "src"}

dreid avatar Feb 15 '24 18:02 dreid