Dustin Ingram
Dustin Ingram
Was this fixed? I just experienced this and noticed that upgrading from `21.1.1` to `21.3.1` seems to have fixed it.
@pradyunsg Done, looks like this indeed got fixed and that PR can add a test to ensure it remains fixed!
Here's another example of this failing: `requirements.in`: ``` alembic sqlalchemy[asyncio] ``` `requirements.txt`: ``` # # This file is autogenerated by pip-compile with python 3.8 # To update, run: # #...
@xnuinside I'm not sure I understand your question, specifically the "(not in warehouse, in public)" part, can you elaborate? The `pip search` command uses PyPI's XML-RPC API that is available...
FWIW, a while back I asked what people used `pip search` for and got some responses: https://twitter.com/di_codes/status/1131243583078588418
Great question, thanks for filing an issue. I think you're right, we need a standard way to declare 'vendored' dependencies inside of wheels, (likely with SBOMs). Myself and some other...
I definitely think auditwheel will need to support updating/amending the SBOM when repairing a wheel, but I think there's upstream tooling like `build` which should also provide a way to...
IIUC you're looking for a way to determine if a given project name is published on PyPI? That would require checking if the name exists (via HTTP status) at either:...
@laurentsimon You mean that you have a GitHub repo and you want to determine what PyPI project it corresponds to? There's a couple ways: * Build the project hosted in...
@mayaCostantini Yes, here: https://github.com/sigstore/cosign/issues/2131