PIP
The PIP package manager for Python.
Configuration
Example
Use the following syntax to configure this plugin globally as part of config.yml
:
ort:
analyzer:
packageManagers:
PIP:
options:
analyzeSetupPyInsecurely: true
operatingSystem: "linux"
pythonVersion: <OPTIONAL_STRING>
Use the following syntax to configure this plugin in a repository's .ort.yml
:
analyzer:
package_managers:
PIP:
options:
analyzeSetupPyInsecurely: true
operatingSystem: "linux"
pythonVersion: <OPTIONAL_STRING>
If the plugin is configured in both locations, the configurations are merged, with options from .ort.yml
taking precedence over those from config.yml
.
Options
analyzeSetupPyInsecurely
If "true", python-inspector
resolves dependencies from setup.py files by executing them. This is a potential
security risk.
operatingSystem
The name of the operating system to resolve dependencies for. One of "linux", "macos", or "windows".
pythonVersion
The Python version to resolve dependencies for. If not set, the version is detected from the environment and if that fails, the default version 3.11 is used.