build: don't allow setuptools to sneakily install build-time deps
see https://pip.pypa.io/en/stable/reference/pip_install/#controlling-setup-requires > Setuptools offers the setup_requires setup() keyword for specifying > dependencies that need to be present in order for the setup.py > script to run. Internally, Setuptools uses easy_install to > fulfill these dependencies. > pip has no way to control how these dependencies are located. > None of the package index options have an effect. With these changes, we will now instead hard fail if this were to happen. related: https://github.com/spesmilo/electrum/issues/5859#issuecomment-743621898
This commit is contained in:
SomberNight
6
setup.cfg
Normal file
6
setup.cfg
Normal file
@@ -0,0 +1,6 @@
|
||||
[easy_install]
|
||||
# We don't want setuptools sneakily installing dependencies, invisible to pip.
|
||||
# see https://pip.pypa.io/en/stable/reference/pip_install/#controlling-setup-requires
|
||||
# see https://github.com/pypa/setuptools/issues/1916#issuecomment-743350566
|
||||
index_url = ''
|
||||
find_links = ''
|
||||
Reference in New Issue
Block a user