Skip to content

fix: relax dependency pins from == to >= in requirements.txt#38

Open
rezatnoMsirhC wants to merge 2 commits into
marvinody:masterfrom
rezatnoMsirhC:fix/relax-dependency-pins
Open

fix: relax dependency pins from == to >= in requirements.txt#38
rezatnoMsirhC wants to merge 2 commits into
marvinody:masterfrom
rezatnoMsirhC:fix/relax-dependency-pins

Conversation

@rezatnoMsirhC

Copy link
Copy Markdown

Summary

The requirements.txt file uses exact == version pins for all dependencies. Because setup.py reads this file directly into install_requires, these pins are propagated to every consumer of this package, preventing them from using any newer versions.

Changes

Changed all 13 dependency constraints in requirements.txt from == to >=, preserving the minimum version floor while removing the upper bound restriction.

Motivation

Downstream projects using Python 3.14+ cannot install this package because the pinned versions of cffi==1.14.6 and cryptography==35.0.0 do not build against Python 3.14. Relaxing to >= allows resolvers to select compatible modern versions (e.g. cffi>=2.0.0, cryptography>=48.0.0) that support Python 3.14.

This is a non-breaking change as minimum version requirements are preserved.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant