search

peterbe / hashin

Helping you write hashed entries for packages in your requirements.txt
https://www.peterbe.com/plog/hashin
MIT License
106 stars 28 forks source link

Order of hashes from `get_package_hashes` #126

Closed pcorpet closed 2 years ago

pcorpet commented 3 years ago

As in #105 , I wonder if we could expect the output of get_package_hashes to have hashes in lexicographical order.

GitHub's dependabot is relying on that and is creating commits in my repo that are conflicting with other tools. Of course dependabot could fix it, but I believe it would be cleaner to have the same order out of get_package_hashes than the one done by run_packages.

peterbe commented 2 years ago

@MarkusH or @pcorpet it would be wonderful to see a PR to attempt this.