Skip to content

Commit

Permalink
📌📦 Pin pkginfo to v1.12 @ runtime deps
Browse files Browse the repository at this point in the history
Signed-off-by: William Woodruff <william@trailofbits.com>
  • Loading branch information
woodruffw authored and webknjaz committed Dec 6, 2024
1 parent ff2b051 commit 138a121
Show file tree
Hide file tree
Showing 2 changed files with 9 additions and 2 deletions.
5 changes: 5 additions & 0 deletions requirements/runtime.in
Original file line number Diff line number Diff line change
@@ -1,5 +1,10 @@
twine ~= 6.0

# NOTE: 1.12.0 and later enable support for metadata 2.4
# NOTE: This can be dropped once twine stops using pkginfo
# Ref: https://github.com/pypa/twine/pull/1180
pkginfo ~= 1.12.0

# NOTE: Used to detect an ambient OIDC credential for OIDC publishing,
# NOTE: as well as PEP 740 attestations.
id ~= 1.0
Expand Down
6 changes: 4 additions & 2 deletions requirements/runtime.txt
Original file line number Diff line number Diff line change
Expand Up @@ -66,8 +66,10 @@ packaging==24.1
# -r runtime.in
# pypi-attestations
# twine
pkginfo==1.10.0
# via twine
pkginfo==1.12.0
# via
# -r runtime.in
# twine
platformdirs==4.2.2
# via sigstore
pyasn1==0.6.0
Expand Down

0 comments on commit 138a121

Please sign in to comment.