Poetry version support #1556
Comments
rebelagentm
added
L: python:poetry
|
Would also be interested in this. Just upgraded to the newly released poetry v1 and getting the error: |
|
I am all in for this change! Repo that has this problem: https://github.com/wemake-services/wemake-python-styleguide/blob/master/pyproject.toml Poetry version is specified in the build file: But, it does not work. What website says: Logs: In case making a support for several versions is a hard thing, then I suggest to drop |
|
At this point I have upgraded almost all my packages to |
|
Related pull requests: #1571, #1623, #1624. Related issue on feedback repo: https://github.com/dependabot/feedback/issues/798. |
|
Any update on this? |
|
The automated pull request for Poetry 1.0.3 is here: #1667 |
Note: this is supposed to be working automatically with dependabot, but there's an outstanding issue yet to be resolved at dependabot/dependabot-core#1556 Hopefully this gets resolved soon.
|
Tests are failing because dependabot can't parse new lock file format. Any Ruby developers to help with it? 🤕 |
|
dependendabot is not working for me for almost 4 month now. Sadly, but there's nothing I can do about it. |
|
Issue is now solved. |
|
Not fully. There are several issues:
There's a workaround for the second problem: https://pypi.org/project/poetry-merge-lock/ |
|
Also dependabot cannot update my deps, here's what it says: wemake-services/wemake-python-styleguide#1286 (comment) |
Note: this is supposed to be working automatically with dependabot, but there's an outstanding issue yet to be resolved at dependabot/dependabot-core#1556 Hopefully this gets resolved soon.
python-poetry/poetry#2654 is my PR to poetry to try and resolve this issue upstream. It seeks to make content-hash omitted, so no merge conflict. |
infin8x
added
the
F: language-support
|
https://pypi.org/project/poetry-merge-lock/ seems archived now. |
|
@chbndrhnns These days I use a small shell script with these commands: git restore --worktree --staged poetry.lock
poetry lock --no-update
git add poetry.lockSee this comment for more details. |
Some annoyances & errors, doesn't seem like poetry support is fully developed. dependabot/dependabot-core#1556
Some annoyances & errors, doesn't seem like poetry support is fully developed. dependabot/dependabot-core#1556
|
Any updates here? |
|
Any updates here? Dependabot's commits aren't honoring the python patch version specified in |
Same problem 🥲 In my [tool.poetry.dependencies]
python = "3.9.16"And Dependabot is always trying to replace the line |
|
☝️ sounds like a specific bug that isn't related to this general thread of "support multiple versions of poetry/ Can you spin that off as a specific issue? I can't guarantee that we'll get to it (in fact a PR would be most welcome!) but it should be a lot more tractable to say "retain specific python pin from |
|
Hello! Would a "quickfix" like specifying the |
|
Even when using 1.8.3, we started getting 1.8.5 changes. I'm assuming dependabot just bumped their version again |
|
It's been 5 years, and the same issue happens between 1.8.5 and 2.0.1 now. Therhas e been a major version update and the lock file has a new version now. Github tries to revert it with each Dependabot run. |
|
Our build process requires the |
|
Just a bump to mention I ran into the same as above; using Poetry 2.x configurations (with |
|
This issue could possibly be closed through #11642 (and more specific issues moving forward). |
|
At least starting with Poetry 2, dependabot should be able to use |
|
@edgarrmondragon I'm not sure that parameter installs a custom Poetry version. AFAIK, it only raises an error if the requirement is not met. |
I know, but Dependabot could use that constraint to install at runtime a Poetry version the project supports. |
and others
Dependabot supports Poetry but it doesn't use given version in pyproject.toml file. When i use any version newer than 1.0.0a1, update check fails because of changed lock file syntax.
The text was updated successfully, but these errors were encountered: