Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / pypa/pip-audit issues and pull requests
#588 - Replace current issue templates with forms (and tweak guidance)
Issue -
State: open - Opened by woodruffw about 1 year ago
Labels: good first issue, refactoring, chore
#587 - pip-audit -r requirements.txt with "-r base.txt" in txt file fails
Issue -
State: closed - Opened by hugoalvarado about 1 year ago
- 3 comments
Labels: question, bug-candidate
#586 - build(deps): bump ossf/scorecard-action from 2.1.2 to 2.1.3
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#585 - build(deps-dev): update ruff requirement from <0.0.260 to <0.0.261
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#584 - Prep 2.5.4
Pull Request -
State: closed - Opened by tetsuo-cpp over 1 year ago
#583 - build(deps): bump sigstore/gh-action-sigstore-python from 1.2.2 to 1.2.3
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#582 - build(deps): bump github/codeql-action from 2.2.8 to 2.2.9
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#581 - build(deps-dev): update ruff requirement from <0.0.259 to <0.0.260
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#580 - build(deps): bump sigstore/gh-action-sigstore-python from 1.2.1 to 1.2.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#579 - build(deps): bump actions/upload-pages-artifact from 1.0.7 to 1.0.8
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#578 - Duplicate dependencies are sometimes added to requirements file with `--fix`
Issue -
State: closed - Opened by tetsuo-cpp over 1 year ago
Labels: bug, component:dep-sources, component:fixes
#577 - requirement: Check requirements using the canonical name when fixing
Pull Request -
State: closed - Opened by tetsuo-cpp over 1 year ago
- 1 comment
#576 - Prep 2.5.3
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
Labels: chore
#575 - Bump our CycloneDX dependency
Issue -
State: closed - Opened by woodruffw over 1 year ago
- 1 comment
Labels: component:output-formats, dependencies
#574 - Subprocess: fix stream handling
Issue -
State: open - Opened by woodruffw over 1 year ago
- 2 comments
Labels: enhancement, help wanted, good first issue, component:dep-sources
#573 - _subprocess.py stdout reading may corrupt UTF-8 characters, and then fail when decodes the data
Issue -
State: closed - Opened by dnso86 over 1 year ago
- 4 comments
Labels: bug, duplicate, component:dep-sources
#572 - _subprocess: perform invalid UTF-8 substitution
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
Labels: component:dep-sources
#571 - build(deps-dev): update ruff requirement from <0.0.258 to <0.0.259
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#570 - build(deps): bump github/codeql-action from 2.2.7 to 2.2.8
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#569 - From version 2.5.0+ there looks to be an change in behavior that breaks github actions for pip-audit
Issue -
State: closed - Opened by mmaeng over 1 year ago
- 6 comments
Labels: bug, component:dep-sources
#568 - requirement: Only copy FIFO files into temporary files
Pull Request -
State: closed - Opened by tetsuo-cpp over 1 year ago
- 2 comments
#567 - _subprocess: Fix `pip install` log window not showing
Pull Request -
State: closed - Opened by tetsuo-cpp over 1 year ago
- 1 comment
#566 - Preserve pip-tools comment indents
Issue -
State: open - Opened by q0w over 1 year ago
- 1 comment
Labels: bug, help wanted, upstream, component:fixes
#565 - _dependency_source, _cli, test: Do not override `pip.conf` unless explicitly specified via flags
Pull Request -
State: closed - Opened by philblckwd over 1 year ago
- 7 comments
Labels: enhancement, component:dep-sources
#564 - Ignore duplicate requirements
Issue -
State: open - Opened by q0w over 1 year ago
- 17 comments
Labels: bug, help wanted, good first issue, component:dep-sources
#563 - Private repo dependencies no longer being skipped
Issue -
State: closed - Opened by philblckwd over 1 year ago
- 6 comments
Labels: bug-candidate
#562 - Prep 2.5.2
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
Labels: chore
#561 - build(deps-dev): update cyclonedx-python-lib requirement from !=2.5.0,~=2.0 to >=2,<5
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, python
#560 - build(deps-dev): update ruff requirement from <0.0.257 to <0.0.258
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#559 - build(deps): bump actions/deploy-pages from 1.2.8 to 2.0.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#558 - pyproject: constrain cyclonedx to ~2
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
- 1 comment
Labels: dependencies
#557 - workflows/release: configure environment
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
#556 - build(deps): bump actions/deploy-pages from 1.2.7 to 1.2.8
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#555 - workflows/release: fix indentation
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
#554 - Prep 2.5.1
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
Labels: chore
#553 - Run tests for Windows in GitHub Actions
Issue -
State: open - Opened by tetsuo-cpp over 1 year ago
- 1 comment
Labels: enhancement, help wanted, good first issue, component:cicd, plat:windows
#552 - Could not open requirements file: No such file or directory on Linux
Issue -
State: closed - Opened by DariusKunce over 1 year ago
- 5 comments
Labels: bug
#551 - requirement: Close temporary files before passing them to `pip`
Pull Request -
State: closed - Opened by tetsuo-cpp over 1 year ago
- 3 comments
Labels: component:dep-sources
#550 - build(deps): bump actions/deploy-pages from 1.2.5 to 1.2.7
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#549 - workflows/release: use OIDC exchange
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
- 3 comments
Labels: component:cicd, chore
#548 - pip_requirements_parser.InstallationError on Windows
Issue -
State: closed - Opened by stradivari96 over 1 year ago
- 7 comments
Labels: bug, plat:windows
#547 - build(deps-dev): update ruff requirement from <0.0.256 to <0.0.257
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#546 - build(deps): bump github/codeql-action from 2.2.6 to 2.2.7
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#545 - build(deps): bump actions/deploy-pages from 1.2.5 to 1.2.6
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#544 - build(deps-dev): update ruff requirement from <0.0.255 to <0.0.256
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#543 - Prep 2.5.0
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
Labels: chore
#542 - build(deps): bump github/codeql-action from 2.2.5 to 2.2.6
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#541 - build(deps): bump actions/deploy-pages from 1.2.4 to 1.2.5
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#540 - requirement, test: Remove preresolved dependency optimization
Pull Request -
State: closed - Opened by tetsuo-cpp over 1 year ago
- 3 comments
#539 - Experiment with removing preresolved dependency optimization
Issue -
State: closed - Opened by tetsuo-cpp over 1 year ago
Labels: enhancement
#538 - requirement: Support process substitution inputs
Pull Request -
State: closed - Opened by tetsuo-cpp over 1 year ago
- 2 comments
#537 - Regression: handling process substitution inputs
Issue -
State: closed - Opened by woodruffw over 1 year ago
Labels: bug, component:dep-sources
#536 - pip_audit: handle subprocess streams more cleanly
Pull Request -
State: closed - Opened by woodruffw over 1 year ago
Labels: component:dep-sources, refactoring, chore
#535 - build(deps-dev): update ruff requirement from <0.0.254 to <0.0.255
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#534 - Crash for "jupyter~=1.0.0"
Issue -
State: closed - Opened by bcm-at-zama over 1 year ago
- 11 comments
Labels: bug, component:dep-sources
#533 - build(deps): bump github/codeql-action from 2.2.4 to 2.2.5
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#532 - build(deps-dev): update ruff requirement from <0.0.253 to <0.0.254
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#531 - build(deps-dev): update ruff requirement from <0.0.250 to <0.0.253
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#530 - build(deps-dev): update ruff requirement from <0.0.248 to <0.0.250
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#529 - The lockfile module dependency doesn't seem to be registered
Issue -
State: closed - Opened by HubTou over 1 year ago
- 7 comments
#528 - build(deps-dev): update ruff requirement from <0.0.247 to <0.0.248
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python
#526 - Enabling pip-audit to be used for dependency extraction purposes only
Issue -
State: closed - Opened by iastewar over 1 year ago
- 8 comments
Labels: enhancement, component:dep-sources
#523 - treewide: Use `pip install` for dependency resolution
Pull Request -
State: closed - Opened by tetsuo-cpp over 1 year ago
- 10 comments
Labels: component:dep-sources
#522 - Figure out how to correctly retrieve dependencies from source distributions
Issue -
State: closed - Opened by tetsuo-cpp over 1 year ago
- 3 comments
Labels: bug, component:dep-sources
#516 - Rethink how we handle hashes
Issue -
State: closed - Opened by woodruffw over 1 year ago
- 11 comments
Labels: component:dep-sources
#511 - ERROR:pip_audit._cli:impossible resolution after upgrading to 2.4.15
Issue -
State: closed - Opened by khink over 1 year ago
- 9 comments
Labels: bug, component:dep-sources
#508 - Resolve all requirements files at once
Issue -
State: closed - Opened by tetsuo-cpp over 1 year ago
- 1 comment
Labels: bug
#504 - Allow pip-audit to report the current version of the vuln database
Issue -
State: closed - Opened by TansyArron over 1 year ago
- 2 comments
Labels: enhancement
#478 - Add a config/command line option to treat some downstream errors as warning instead of complete error exit
Issue -
State: open - Opened by norg over 1 year ago
- 19 comments
Labels: enhancement, component:dep-sources
#441 - Post-mortem: regression in 2.4.9
Issue -
State: closed - Opened by woodruffw over 1 year ago
- 6 comments
#433 - Hash checking: respect third party indices
Issue -
State: closed - Opened by carl-armis over 1 year ago
- 16 comments
Labels: bug, question, component:dep-sources
#424 - Add option to control the exit code
Issue -
State: closed - Opened by norg over 1 year ago
- 9 comments
#382 - Crash on `package @ git+...` dependencies
Issue -
State: closed - Opened by Zac-HD over 1 year ago
- 16 comments
Labels: bug, component:dep-sources
#345 - --trusted-host or --cert as in pip itself
Issue -
State: open - Opened by ZeerDonker almost 2 years ago
- 4 comments
Labels: enhancement, component:cli
#342 - Caching: Use a more respectful default location?
Issue -
State: open - Opened by woodruffw almost 2 years ago
Labels: help wanted, good first issue, pri:low
#340 - CalledProcessError when specifiying a package in requirements
Issue -
State: closed - Opened by ccsalway almost 2 years ago
- 9 comments
Labels: upstream, needs-response, plat:macos
#334 - Better pre-commit hook: use of files
Issue -
State: open - Opened by jamesbraza almost 2 years ago
- 1 comment
Labels: enhancement, help wanted, good first issue
#321 - Use `pip`'s new `--dry-run` and `--report` flags
Issue -
State: closed - Opened by woodruffw almost 2 years ago
- 9 comments
Labels: enhancement
#271 - Integration with PEP 740
Issue -
State: open - Opened by woodruffw about 2 years ago
Labels: upstream
#235 - CLI: add a flag for showing each result's alias set
Issue -
State: closed - Opened by woodruffw over 2 years ago
- 5 comments
Labels: enhancement, component:cli
#207 - Make more information available in the reports
Issue -
State: open - Opened by StefanFl over 2 years ago
- 13 comments
Labels: enhancement, upstream, component:output-formats
#206 - Feature: output in SARIF format
Issue -
State: open - Opened by htadashi over 2 years ago
- 9 comments
Labels: enhancement, help wanted, good first issue, component:output-formats
#190 - Improved error messaging when a package fails to install
Issue -
State: closed - Opened by woodruffw over 2 years ago
- 3 comments
Labels: enhancement, component:cli
#180 - Performance is dramatically worse for `-r requirements` than without it.
Issue -
State: closed - Opened by matthewdeanmartin over 2 years ago
- 12 comments
Labels: performance
#170 - Detailed installation reports
Issue -
State: open - Opened by di over 2 years ago
- 5 comments
Labels: enhancement
#84 - Support Poetry via `poetry.lock`
Issue -
State: open - Opened by woodruffw over 2 years ago
- 21 comments
Labels: pri:low, component:dep-sources
#73 - Support other Python packaging formats
Issue -
State: closed - Opened by woodruffw over 2 years ago
- 5 comments
Labels: pri:low, component:dep-sources
#37 - Handoff: Document architecture and data model
Issue -
State: closed - Opened by woodruffw almost 3 years ago
Labels: component:docs
#35 - Handoff: Rewrite all URLs
Issue -
State: closed - Opened by woodruffw almost 3 years ago
- 1 comment
Labels: component:docs
#34 - Handoff: Change the `PYPI_TOKEN` secret
Issue -
State: closed - Opened by woodruffw almost 3 years ago
Labels: component:cicd