Cannot get package meta when requirement file uses --follow-links

pilosus / pip-license-checker

Check license types for third-party dependencies: permissive, copyleft, proprietory, etc.

https://blog.pilosus.org/posts/2021/09/07/pip-license-checker/

Other

67 stars 3 forks source link

Cannot get package meta when requirement file uses --follow-links #104

Open pilosus opened 2 years ago

pilosus commented 2 years ago

To reproduce:

Create a requirements.txt

-f https://download.pytorch.org/whl/torch_stable.html
torch==1.7.0+cpu

Pass in to the checker and get an error

lein run --requirements requirements.txt
torch:1.7.0+cpu                     Error                                                   Error

The problem is that we plug in an external link with a package version that is absent from the global PyPI index. That's why we cannot compare versions and get the error