Frost Ming
Frost Ming
Oh I might misread the feature request, there is another request to **resolve** the version to the minimum required. This part can be realized though. So: 1. `pdm add requests`...
FYI `update` also changes the lock file, trying to find the **latest** version of given packages.
I thought of this feature again and found that it may produce broken lock files. Say you add a dependency **without a lower bound** like `requests`, with the "prefer oldest"...
Yes, you would say you clearly know what you are doing and will remember to set lower bounds every time. But what if it comes to sub-dependencies? You don't know...
Or do you know other package managers that do the same so I can learn from it?
Well, I will leave this for discussion until enough people show their interest in this feature(by voting).
I think the situation Rust is facing is much better than the Python community. It enforces relatively strict rules on the package versions.
Python's subprocess doesn't offer a good mechanism to forward ALL signals, you can only enumerate the signal list and handle them by `subprocess.send_signal`. With that said, PDM is by no...
Now it only handles `SIGINT`, so would adding `SIGTERM` and `SIGKILL` to the list suffice?
Unfortunately dependabot [has stopped accepting new ecosystems](https://github.com/dependabot/dependabot-core/blob/main/CONTRIBUTING.md#contributing-new-ecosystems). But we can make a dedicated github action from a fork of dependabot-core, like [dependabot-lein-runner](https://github.com/CGA1123/dependabot-lein-runner). Thanks for the info