Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Support filtering "system" dependencies
See original GitHub issuepip_api.installed_distributions() returns every visible distribution, which can potentially include distributions provided by the system/system package manager.
Issuing messages for these might not be desirable default behavior, for a few reasons:
- System-installed dependencies might be required by the system, and thus cannot be safely upgraded
- System-installed dependencies might be installed via a mechanism other than
pip, so issued guidance might not always be applicable. - System-installed dependencies might be patched by distribution maintainers to remove known vulnerabilities, without updating the version number.
As such, it probably makes sense for the CLI to have option(s) that allow the user to enable (or disable) filtering of dependencies that look like they’re supplied by the system. This, in turn, requires us to come up with a reliable way of determining whether a given dependency is a “system” one.
Issue Analytics
- State:
- Created 2 years ago
- Comments:6 (6 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
Opened upstream tracking: https://github.com/di/pip-api/issues/101
Since this is going to involve manipulating virtual environments, it might be best to do #50 first.