Skip to content

#847: Fix pip-audit failure on Poetry-managed Python builds#848

Merged
ArBridgeman merged 7 commits into
mainfrom
codex-dependency-audit-disable-pip
May 27, 2026
Merged

#847: Fix pip-audit failure on Poetry-managed Python builds#848
ArBridgeman merged 7 commits into
mainfrom
codex-dependency-audit-disable-pip

Conversation

@tkilias
Copy link
Copy Markdown
Collaborator

@tkilias tkilias commented May 26, 2026

Summary

Fix the dependency audit flow so it no longer depends on pip creating a copied temp interpreter that fails on this Poetry-managed Python build.

Details

  • Keep hashes in the exported requirements file.
  • Run pip-audit with --disable-pip to skip pip-based resolution and avoid the broken copied-interpreter path.
  • Trimmed the audit tests to a deterministic unit-level contract and removed the now-unused Poetry export fixture helper.

Ticket

Closes #847

Validation

  • POETRY_VIRTUALENVS_IN_PROJECT=true poetry run pytest -q test/unit/util/dependencies/audit_test.py test/unit/nox/_dependencies_test.py

@tkilias tkilias changed the title [codex] fix dependency audit for copied-interpreter failure 847: May 26, 2026
@tkilias tkilias changed the title 847: #847: Fix pip-audit failure on Poetry-managed Python builds May 26, 2026
@tkilias tkilias marked this pull request as ready for review May 26, 2026 12:19
@tkilias tkilias closed this May 26, 2026
@tkilias tkilias reopened this May 26, 2026
@tkilias tkilias temporarily deployed to manual-approval May 26, 2026 14:05 — with GitHub Actions Inactive
@tkilias tkilias temporarily deployed to manual-approval May 26, 2026 16:43 — with GitHub Actions Inactive
@tkilias tkilias temporarily deployed to manual-approval May 26, 2026 17:28 — with GitHub Actions Inactive
ArBridgeman
ArBridgeman reviewed May 27, 2026
View reviewed changes
Comment thread doc/changes/unreleased.md Outdated
ArBridgeman
ArBridgeman reviewed May 27, 2026
View reviewed changes
Comment thread test/unit/util/dependencies/audit_test.py
ArBridgeman
ArBridgeman reviewed May 27, 2026
View reviewed changes
Comment thread test/integration/project-template/conftest.py Outdated
@tkilias @ArBridgeman
Update doc/changes/unreleased.md
865da7e 
Co-authored-by: Ariel Schulz <43442541+ArBridgeman@users.noreply.github.com>
@tkilias tkilias requested a deployment to manual-approval May 27, 2026 08:23 — with GitHub Actions Waiting
@tkilias tkilias temporarily deployed to manual-approval May 27, 2026 09:04 — with GitHub Actions Inactive
@tkilias tkilias temporarily deployed to manual-approval May 27, 2026 09:44 — with GitHub Actions Inactive
@ArBridgeman ArBridgeman temporarily deployed to manual-approval May 27, 2026 10:16 — with GitHub Actions Inactive
@ArBridgeman ArBridgeman self-requested a review May 27, 2026 10:16
@ArBridgeman ArBridgeman enabled auto-merge (squash) May 27, 2026 10:19
@ArBridgeman ArBridgeman merged commit a80861f into main May 27, 2026
39 checks passed
@ArBridgeman ArBridgeman deleted the codex-dependency-audit-disable-pip branch May 27, 2026 10:20
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented May 27, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
100.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ArBridgeman ArBridgeman ArBridgeman approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Fix pip-audit failure on Poetry-managed Python builds

2 participants

@tkilias @ArBridgeman