Properly filter out optional dependencies (i.e. extras) when checking build environment distributions. ([#11112](https://github.com/pypa/pip/issues/11112) <https://github.com/pypa/pip/issues/11112>_)
Change the build environment dependency checking to be opt-in. ([#11116](https://github.com/pypa/pip/issues/11116) <https://github.com/pypa/pip/issues/11116>_)
Allow using a pre-release version to satisfy a build requirement. This helps
manually populated build environments to more accurately detect build-time
requirement conflicts. ([#11123](https://github.com/pypa/pip/issues/11123) <https://github.com/pypa/pip/issues/11123>_)
22.1 (2022-05-11)
Process
Enable the importlib.metadata metadata implementation by default on
Python 3.11 (or later). The environment variable _PIP_USE_IMPORTLIB_METADATA
can still be used to enable the implementation on 3.10 and earlier, or disable
it on 3.11 (by setting it to 0 or false).
Bug Fixes
Revert [#9243](https://github.com/pypa/pip/issues/9243) <https://github.com/pypa/pip/issues/9243>_ since it introduced a regression in certain edge cases. ([#10962](https://github.com/pypa/pip/issues/10962) <https://github.com/pypa/pip/issues/10962>_)
Fix missing REQUESTED metadata when using URL constraints. ([#11079](https://github.com/pypa/pip/issues/11079) <https://github.com/pypa/pip/issues/11079>_)
pip config now normalizes names by converting underscores into dashes. ([#9330](https://github.com/pypa/pip/issues/9330) <https://github.com/pypa/pip/issues/9330>_)
22.1b1 (2022-04-30)
Process
Start migration of distribution metadata implementation from pkg_resources
to importlib.metadata. The new implementation is currently not exposed in
any user-facing way, but included in the code base for easier development.
Deprecations and Removals
Drop --use-deprecated=out-of-tree-build, according to deprecation message. ([#11001](https://github.com/pypa/pip/issues/11001) <https://github.com/pypa/pip/issues/11001>_)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
2 years ago
Bumps pip from 21.2.4 to 22.1.1.
Changelog
Sourced from pip's changelog.
... (truncated)
Commits
ca2d9f4Bump for releasef20ab57Merge pull request #11124 from uranusjr/use-contain-for-checkingf7c05a5Allow pre-release to satisfy build requirements30af807Merge pull request #11117 from q0w/opt-check923cb5aMerge pull request #11119 from pradyunsg/move-add_requirement-to-legacy-resolverd673aa1MoveRequirementSet.add_requirementintoLegacyResolver3166157Opt to check build dependencies0a982f6Merge pull request #11112 from pradyunsg/filter-out-build-env-extrasbf090d3:newspaper:d0c89a1Merge pull request #10865 from pypa/pradyunsg-patch-1Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)