search

nextstrain / ncov-ingest

A pipeline that ingests SARS-CoV-2 (i.e. nCoV) data from GISAID and Genbank, transforms it, stores it on S3, and triggers Nextstrain nCoV rebuilds.
MIT License
36 stars 20 forks source link

Lock dependencies using pip-compile #438

Open victorlin opened 9 months ago

victorlin commented 9 months ago

Currently, dependencies are defined rather loosely:

https://github.com/nextstrain/ncov-ingest/blob/e6c904f1e36c6f833ee0b1b5b52b0aaa8570b6f8/requirements.txt#L1-L8

From https://github.com/nextstrain/ncov-ingest/pull/416#discussion_r1298885003:

Ideally, it would still be nice to lock these deps so they're not changing and liable to break on new upstream releases updates. I'd use pip-compile from pip-tools for that.