use the lock file for pinning dependencies, not the project definition

[altendky]

Purpose:

Presently every dependabot PR that updates a package we have specified in pyproject.toml conflicts because the poetry.lock has a hash of the contents of pyproject.toml. There's various discussion that could be had around * vs. >=x.y.z vs. ^x.y and specifying versions here or there or wherever... but we can't be dealing with these conflicts every time so some option involving not changing pyproject.toml every time is needed.

With this change it is reasonable once again to have dependabot auto-rebase since the PRs won't all be conflicting.

Current Behavior:

New Behavior:

Testing Notes:

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.

[coveralls-official]

Pull Request Test Coverage Report for Build 11072836265

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• 37 unchanged lines in 7 files lost coverage.
• Overall coverage remained the same at 90.958%

---

Files with Coverage Reduction	New Missed Lines	%
chia/data_layer/data_store.py	1	95.64%
chia/_tests/core/full_node/test_transactions.py	1	99.14%
chia/wallet/util/wallet_sync_utils.py	1	86.54%
chia/plotters/madmax.py	1	50.6%
chia/rpc/rpc_server.py	4	87.83%
chia/wallet/wallet_node.py	7	88.15%
chia/_tests/core/util/test_lockfile.py	22	77.73%

Totals
Change from base Build 11060322104:	0.0%
Covered Lines:	102031
Relevant Lines:	112151

---

💛 - Coveralls

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

This PR has been flagged as stale due to no activity for over 60 days. It will not be automatically closed, but it has been given a stale-pr label and should be manually reviewed by the relevant parties.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.

[github-actions]

This pull request has conflicts, please resolve those before we can evaluate the pull request.

[github-actions]

Conflicts have been resolved. A maintainer will review the pull request shortly.