Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade Dependencies and change packaging tooling #27

Merged
merged 1 commit into from
Aug 4, 2023
Merged

Upgrade Dependencies and change packaging tooling #27

merged 1 commit into from
Aug 4, 2023

Conversation

halostatue
Copy link
Member

@halostatue halostatue commented Aug 4, 2023
edited
Loading

  • Upgraded to Ansible 8.2.0

  • Changed from pipenv to pdm and pyproject.toml because of ongoing issues with Dependabot not detecting dependencies in Pipfile.lock as opposed to only in requirements.txt (the inverse of Dependabot fails to update same dependency in same pull request dependabot/dependabot-core#6200). After trying Poetry (predates the latest Python packaging PEPs), rye (experimental), and hatch (no lock file), pdm seems to fit the bill best for the limited needs that we have with this project.

  • Experimentally removed the generated requirements.txt file. It isn't used, but it has been valuable in getting update notifications from Dependabot, although the update PRs are less useful. If required, we can add it back with pdm export -f requirements > requirements.txt.

@halostatue
## 4.0.0 / 2023-08-04
f2d61ee 
- Upgraded to Ansible 8.2.0

- Changed from [pipenv][] to [pdm][] and `pyproject.toml` because of
  ongoing issues with Dependabot not detecting dependencies in
  `Pipfile.lock` as opposed to only in `requirements.txt` (the inverse
  of dependabot/dependabot-core#6200). After trying Poetry (predates the
  latest Python packaging PEPs), rye (experimental), and hatch (no lock
  file), [pdm][] seems to fit the bill best for the limited needs that
  we have with this project.

- Experimentally removed the generated `requirements.txt` file. It isn't
  used, but it has been valuable in getting update notifications from
  Dependabot, although the update PRs are less useful. If required, we
  can add it back with `pdm export -f requirements > requirements.txt`.
@halostatue halostatue self-assigned this Aug 4, 2023
@halostatue halostatue changed the title ## 4.0.0 / 2023-08-04 Upgrade Dependencies and change packaging tooling Aug 4, 2023
mikestok
mikestok approved these changes Aug 4, 2023
View reviewed changes
Copy link

@mikestok mikestok left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There's a lot of stuff in the .gitignore!

@halostatue
Copy link
Member Author

There's a lot of stuff in the .gitignore!

Autogenerated, so…

@halostatue halostatue added this pull request to the merge queue Aug 4, 2023
Merged via the queue into main with commit 83e7ab8 Aug 4, 2023
1 check passed
@halostatue halostatue deleted the convert-to-pdm branch August 4, 2023 18:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mikestok mikestok mikestok approved these changes

@ohnit ohnit Awaiting requested review from ohnit

Assignees

@halostatue halostatue

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@halostatue @mikestok