github-starred/awesome-python
2
0
Fork 0
mirror of https://github.com/vinta/awesome-python.git synced 2026-05-07 22:28:47 -05:00
Code Issues 464 Packages Projects Releases Wiki Activity

chore: add uv supply-chain hardening and enforce locked installs

Browse Source 
- Set exclude-newer to 3 days and only-binary/:all: in pyproject.toml to
  limit dependency freshness window and block source builds
- Switch uv sync to --locked in Makefile, ci.yml, and deploy-website.yml
  to enforce the lockfile rather than re-resolving on each install
- Regenerate uv.lock with exclude-newer snapshot recorded

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
Vinta Chen
2026-04-22 02:21:48 +08:00
parent 99d883c00d
commit 0bf9522e5d
5 changed files with 14 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.github/workflows/ci.yml vendored
View File

@@ -24,7 +24,7 @@ jobs:
enable-cache: true
- name: Install dependencies
run: uv sync --group build
run: uv sync --group build --locked
- name: Run tests
run: make test

2
.github/workflows/deploy-website.yml vendored
View File

@@ -31,7 +31,7 @@ jobs:
enable-cache: true
- name: Install dependencies
run: uv sync --group build
run: uv sync --group build --locked
- name: Run tests
if: github.event_name == 'schedule'