Skip to content

feat: improve PDM reports reading lock and only report production dependencies #777

New issue
New issue
Open
Open
feat: improve PDM reports reading lock and only report production dependencies#777
Labels
enhancementNew feature or requesthelp wantedExtra attention is neededsource: pdm
@JCHacking

Description

@JCHacking
JCHacking
opened on Aug 13, 2024

Describe the solution you'd like

I am considering migrating my poetry projects to pdm to comply with PEP 518 and PEP 631 and be faster (that's what the benchmarks I have seen say).

One obstacle is the way to generate the SBOM, since with poetry it reads the lock and only reports the production dependencies. This does not happen with PDM since its only support is reading a venv.

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or requesthelp wantedExtra attention is neededsource: pdm

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions