Skip to content

Migrate from pip to uv#607

Open
Uxio0 wants to merge 1 commit intomainfrom
migrate/pip-to-uv
Open

Migrate from pip to uv#607
Uxio0 wants to merge 1 commit intomainfrom
migrate/pip-to-uv

Conversation

@Uxio0
Copy link
Copy Markdown
Member

@Uxio0 Uxio0 commented Apr 1, 2026

Summary

  • Add [dependency-groups] dev to existing pyproject.toml (which already had [project] dependencies)
  • Add [tool.uv] exclude-newer = "7 days" supply-chain policy
  • Add uv.lock for fully reproducible, hash-verified installs (173 packages)
  • Dockerfile: install uv from official image; two-stage uv sync for layer caching — deps first (--no-install-project), then project install to register safe-cli/safe-creator entry points
  • CI: replace setup-python + pip with astral-sh/setup-uv, cache keyed on uv.lock; publish uses uv build + uvx twine
  • Dependabot: switch ecosystem from pip to uv
  • Remove requirements-txt-fixer pre-commit hook; raise check-added-large-files to 1024KB

chatgpt-codex-connector[bot]
chatgpt-codex-connector bot reviewed Apr 1, 2026
View reviewed changes
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 6715ec4636

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

@Uxio0 Uxio0 force-pushed the migrate/pip-to-uv branch 3 times, most recently from aaee27a to 04e01ac Compare April 1, 2026 15:42
@Uxio0
Migrate from pip/requirements.txt to uv with pyproject.toml
8c60611 
- Add [dependency-groups] dev to existing pyproject.toml
- Add [tool.uv] exclude-newer = "7 days" supply-chain policy
- Add uv.lock for fully reproducible, hash-verified installs
- Dockerfile: install uv from official image, two-stage sync for layer
  caching (deps first, then project install for entry points)
- CI: replace setup-python+pip with astral-sh/setup-uv, cache on
  uv.lock, use uv sync --frozen; publish uses uv build + uvx twine
- Dependabot: switch ecosystem from pip to uv
- Remove requirements-txt-fixer pre-commit hook
- Raise check-added-large-files limit to 1024KB for uv.lock
@Uxio0 Uxio0 force-pushed the migrate/pip-to-uv branch from 04e01ac to 8c60611 Compare April 1, 2026 15:48
@coveralls
Copy link
Copy Markdown

coveralls commented Apr 1, 2026

Coverage Status

coverage: 89.554% (+0.2%) from 89.396%
when pulling 8c60611 on migrate/pip-to-uv
into e222f2c on main.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Uxio0 @coveralls