Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: improve PDM reports reading lock and only report production dependencies #777

Open
JCHacking opened this issue Aug 13, 2024 · 1 comment
Open

feat: improve PDM reports reading lock and only report production dependencies #777

JCHacking opened this issue Aug 13, 2024 · 1 comment
Labels
enhancement New feature or request help wanted Extra attention is needed source: pdm

Comments

@JCHacking
Copy link
Contributor

Describe the solution you'd like

I am considering migrating my poetry projects to pdm to comply with PEP 518 and PEP 631 and be faster (that's what the benchmarks I have seen say).

One obstacle is the way to generate the SBOM, since with poetry it reads the lock and only reports the production dependencies. This does not happen with PDM since its only support is reading a venv.
@JCHacking JCHacking added the enhancement New feature or request label Aug 13, 2024
@jkowalleck
Copy link
Member

jkowalleck commented Aug 13, 2024
edited
Loading

duplicates #604
see also previous attempts: #603

feel free to contribute this feature.

@jkowalleck jkowalleck added the help wanted Extra attention is needed label Aug 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request help wanted Extra attention is needed source: pdm
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jkowalleck @JCHacking