Open charles-dyfis-net opened 1 year ago
I intend to fix this in poetry2nix
, which means that I get to choose the versions of dependencies. If you want to control which crates are used in Nix or other reproducible environments, then (at minimum) you need to add the lockfile to your releases.
I second this. Not having having a Cargo.lock makes it hard to use with EasyBuild
These are the latest recommendations from the Rust community afaik:
Not having a
Cargo.lock
file makes tiktoken harder to use by projects being packaged for deployment with Nix (which runs builds in a sandbox that only has network access when the hash of the content being downloaded is known ahead-of-time), and exposes users to unexpectedly having different dependency resolutions than a release was tested with upstream.