-
-
Notifications
You must be signed in to change notification settings - Fork 315
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature request: Lock file support for applications #749
Comments
This is actually helpful, thanks! |
JFTR as a datapoint: As someone who recently got an ARM computer and needs to deploy to amd64, I’ve switched from pip-tools to PDM for the sole reason that it can do cross-platform lockfiles. With my current setup (and I know I’m not alone), I wouldn’t be able to use a locking system that doesn’t provide for this (pls don’t say Docker). |
here are just some random thoughts about this topic:
|
Does this mean that is a wanted feature for hatch? |
I have said forever that locking will be supported eventually and that hasn't changed |
Given your tone, should I have already been aware of it? 🤔 |
I didn't intend for that to have a negative tone! I wouldn't expect anyone to be aware of anything since I haven't taken the time to write a roadmap yet but there are various issues and discussions stating that this is planned. Originally I was waiting for an official PEP, but that didn't happen, then I was waiting for pip to gain the dry run/resolve flag but that turned out to not be sufficient for cross-platform use cases, so now the plan is to add a locking method to environment plugin types with the built-in first one being pip-tools |
If you use optional dependencies and features, you should already be able to use pip-tools to generate the lock file and feed it into hatch using I'm going to give a try this integration. Since I use Taskfile, I should be able to force trigger dependency installation on lock file changes. |
I've been working on writing a The plugin is still in early days but I plan to continue working on it here: https://github.com/juftin/hatch-pip-compile. Hopefully it's useful for someone looking to integrate pip-tools directly with hatch. |
Has there been any progress made on this. This is really the only thing keeping me from switching over to hatch. |
The plugin mentioned in the preceding comment by Justin is the best that is possible right now and Hatch could not provide anything better in the immediate future as the only improvement would be a single cross-platform file format and that is a significant amount of effort. |
I would like to formally request the feature to support lock files for reproducible application builds.
I'm aware this has come up a couple of times, but it might be handy to track it in a fresh issue.
What has changed?
The documentation [1] states that this feature is blocked by
pip
s lack of resolving capabilities.However it seems that
pip install --report --dry-run
should do what is needed [2][3][4].Just noticed that this also open as a discussion, so leaving this here so it's linked: #355
This should resolve a list of previous requests:
Reference:
pip download --dry-run --report
! pip#10748The text was updated successfully, but these errors were encountered: