Poetry: command to check lock file
- [X] I have searched the issues of this repo and believe that this is not a duplicate.
Issue
Would it be possible to add a poetry check command (oh, I see you'e used that already, maybe the command could be extended or have a poetry lock --check?) that will return zero if the current poetry.lock is both correct w.r.t. the pyproject.toml (ie: packages match) and that it matches the output of poetry lock.
cjw296
All 11 comments
It's very useful in CI/CD. With this command we could check that programmer didn't forget re-lock requirements.
b0g3r
on 9 Jul 2019
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
![stale[bot] picture](https://avatars3.githubusercontent.com/in/1724?v=4&s=40)
stale[bot]
on 13 Nov 2019
This feature request is still valid.
cjw296
on 13 Nov 2019
I agree that this would be a nice feature!
gpkc
on 7 Jan 2020
This feature is available in some other package managers. I list some examples below:
npm ci: https://docs.npmjs.com/cli/ci.htmlyarn install --frozen-lockfile: https://yarnpkg.com/lang/en/docs/cli/install/#toc-yarn-install-frozen-lockfile
ocavue
on 8 Jan 2020
I had figure out script to emulate the behavior of #1954 and fortunately it is simple:
python -c "from poetry.factory import Factory; l = Factory().create_poetry('.').locker; exit(0) if l.is_locked() and l.is_fresh() else exit(1)" && echo 'OK'
littlebtc
on 7 Feb 2020
worth mentioning that you need poetry on your PYTHONPATH which you can do like:
PYTHONPATH="${PYTHONPATH}:${HOME}/.poetry/lib" \
python -c "from poetry.factory import Factory; l = Factory().create_poetry('.').locker; exit(0) if l.is_locked() and l.is_fresh() else exit(1)" && echo 'OK'
clintmod
on 12 Feb 2020
Thank you both!
I think it's also worth mentioning if you have not followed the recommended install, the necessary changes to PYTHONPATH might differ.
In my case, on ArchLinux, where I installed poetry via pacman, I had to:
PYTHONPATH="${PYTHONPATH}:/usr/lib/python3.8/site-packages"
poetry run python -c "from poetry.factory import Factory; l = Factory().create_poetry('.').locker; exit(0) if l.is_locked() and l.is_fresh() else exit(1)" && echo 'OK'
Qu4tro
on 14 Feb 2020
I'll add to my requirements wishlist for this: also check that the .lock file is consistent with what's actually in the managed python environment.
I've commented on @cliebBS pull request #1954, but thought I'd mention it here too for completeness.
cjw296
on 16 Feb 2020
I'd like to report back and say this check in it's current form isn't really useful for me… it only checks to make sure that poetry update would result in no updates.
I thought it would function more like bundlers deployment mode. So that it errors if the pyproject.toml has been modified but the lock file is out of date.
clintmod
on 26 Feb 2020
If you use poetry-dynamic-versioning and the above mentioned script is failing, you can try this one:
PYTHONPATH="${PYTHONPATH}:${HOME}/.poetry/lib:${HOME}/.poetry/lib/poetry/_vendor/py3.6/" python -c "from poetry.factory import Factory; from pathlib import Path; l = Factory().create_poetry(Path('.')).locker; exit(0) if l.is_locked() and l.is_fresh() else exit(1)" && echo 'OK' || (echo 'Lock file out of date. Maybe you need to do "poetry lock"'; exit 1)
hrist0stoichev
on 16 Oct 2020
Related issues
kierun
·
3Comments
mozartilize
·
3Comments
jackemuk
·
3Comments
probablykasper
·
3Comments
jbarlow83
·
3Comments
Most helpful comment
I had figure out script to emulate the behavior of #1954 and fortunately it is simple: