-
Notifications
You must be signed in to change notification settings - Fork 263
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Different dependency versions installed in dev
versus final
Docker images
#792
Comments
One possibility might be to use https://bneijt.nl/pr/poetry-lock-package/ to build a "locked" wheel and install that one in the Another option would be to aggressively ensure that for our release version images, at least, that we are consistently running |
Related: #1097. |
There seem to be quite a few open issues against Poetry involving incorrect dependency declarations - any or all of these may be causing the issues we encountered with #1323, but dropping support for Python 3.6 (#1268) will at least in the short term allow us to avoid the currently encountered issue as it'll let us remove the split dependencies that we currently have for Python 3.6 versus all later versions, which are causing the current failures. However there is a concern that at some point in the future we may find ourselves in this same position (e.g. with respect to Python 3.7) so getting the issues fixed in Poetry would still be highly desirable.
|
Fixed in |
Environment
Steps to Reproduce
dev
docker image and runpip list
final
docker image and runpip list
Expected Behavior
Installed packages should be identical except for the additional dev-only dependencies present in the
dev
image.Observed Behavior
In several cases
final
has newer versions of various dependencies thandev
, for example:dev
hasidna 2.10
whereasfinal
hasidna 3.2
dev
haspackaging 20.9
whereasfinal
haspackaging 21.0
dev
hasrequests 2.25.1
whereasfinal
hasrequests 2.26.0
This is problematic as it means that
final
anddev
may show different behavior, have different bugs or fixes, etc.The root cause appears to be that the
dev
image installs its dependencies based on exact versions pinned inpoetry.lock
, whereas thefinal
image installs its dependencies based on the looser version constraints defined inpyproject.toml
.Related Poetry FR and PR: python-poetry/poetry#2778, python-poetry/poetry#3341
The text was updated successfully, but these errors were encountered: