PIP

The PIP package manager for Python.

Configuration

Example

Use the following syntax to configure this plugin globally as part of config.yml:

ort:
  analyzer:
    packageManagers:
      PIP:
        options:
          analyzeSetupPyInsecurely: true
          operatingSystem: "linux"
          pythonVersion: <OPTIONAL_STRING>

Use the following syntax to configure this plugin in a repository's .ort.yml:

analyzer:
  package_managers:
    PIP:
      options:
        analyzeSetupPyInsecurely: true
        operatingSystem: "linux"
        pythonVersion: <OPTIONAL_STRING>

If the plugin is configured in both locations, the configurations are merged, with options from .ort.yml taking precedence over those from config.yml.

Options

analyzeSetupPyInsecurely

If "true", python-inspector resolves dependencies from setup.py files by executing them. This is a potential security risk.

operatingSystem

The name of the operating system to resolve dependencies for. One of "linux", "macos", or "windows".

pythonVersion

The Python version to resolve dependencies for. If not set, the version is detected from the environment and if that fails, the default version 3.11 is used.

Configuration​

Example​

Options​

analyzeSetupPyInsecurely​

operatingSystem​

pythonVersion​