Description
# Poetry: Python packaging and dependency management made easy [](https://python-poetry.org/) [][PyPI Releases] [][PyPI Releases] [][PyPI] [](https://pypistats.org/packages/poetry) [][Discord] Poetry helps you declare, manage and install dependencies of Python projects, ensuring you have the right stack everywhere.  Poetry replaces `setup.py`, `requirements.txt`, `setup.cfg`, `MANIFEST.in` and `Pipfile` with a simple `pyproject.toml` based project format. ```toml [project] name = "my-package" version = "0.1.0" description = "The description of the package" license = { text = "MIT" } readme = "README.md" # No python upper bound for package metadata requires-python = ">=3.9" authors = [ { name = "Sébastien Eustace", email = "sebastien@eustace.io" }, ] # Keywords (translated to tags on the package index) keywords = ["packaging", "poetry"] dependencies = [ # equivalent to ^3.8.1 with semver constraints "aiohttp (>=3.8.1,<4.0.0)", # dependency with extras "requests[security] (>=2.28,<3.0)", # version-specific dependency with prereleases allowed (see below) "tomli (>=2.0.1,<3.0.0) ; python_version < '3.11'", # git dependency with branch specified "cleo @ git+https://github.com/python-poetry/cleo.git@main", ] [project.urls] repository = "https://github.com/python-poetry/poetry" homepage = "https://python-poetry.org" # Scripts are easily expressed [project.scripts] my_package_cli = 'my_package.console:run' [project.optional-dependencies] # optional dependency to be installed via 'poetry install -E my-extra' my-extra = ["pendulum (>=3.1.0,<4.0.0)"] [tool.poetry.dependencies] # Python upper bound for locking python = ">=3.9,<4.0" # Version-specific dependencies with prereleases allowed tomli = { allow-prereleases = true } # Dependency groups are supported for organizing your dependencies [tool.poetry.group.dev.dependencies] pytest = "^7.1.2" pytest-cov = "^3.0" # ...and can be installed only when explicitly requested # via 'poetry install --with docs' [tool.poetry.group.docs] optional = true [tool.poetry.group.docs.dependencies] Sphinx = "^5.1.1" ``` ## Installation Poetry supports multiple installation methods, including a simple script found at [install.python-poetry.org]. For full installation instructions, including advanced usage of the script, alternate install methods, and CI best practices, see the full [installation documentation]. ## Documentation [Documentation] for the current version of Poetry (as well as the development branch and recently out of support versions) is available from the [official website]. ## Contribute Poetry is a large, complex project always in need of contributors. For those new to the project, a list of [suggested issues] to work on in Poetry and poetry-core is available. The full [contributing documentation] also provides helpful guidance. ## Resources * [Releases][PyPI Releases] * [Official Website] * [Documentation] * [Issue Tracker] * [Discord] [PyPI]: https://pypi.org/project/poetry/ [PyPI Releases]: https://pypi.org/project/poetry/#history [Official Website]: https://python-poetry.org [Documentation]: https://python-poetry.org/docs/ [Issue Tracker]: https://github.com/python-poetry/poetry/issues [Suggested Issues]: https://github.com/python-poetry/poetry/contribute [Contributing Documentation]: https://python-poetry.org/docs/contributing [Discord]: https://discord.com/invite/awxPgve [install.python-poetry.org]: https://install.python-poetry.org [Installation Documentation]: https://python-poetry.org/docs/#installation ## Related Projects * [poetry-core](https://github.com/python-poetry/poetry-core): PEP 517 build-system for Poetry projects, and dependency-free core functionality of the Poetry frontend * [poetry-plugin-export](https://github.com/python-poetry/poetry-plugin-export): Export Poetry projects/lock files to foreign formats like requirements.txt * [poetry-plugin-bundle](https://github.com/python-poetry/poetry-plugin-bundle): Install Poetry projects/lock files to external formats like virtual environments * [install.python-poetry.org](https://github.com/python-poetry/install.python-poetry.org): The official Poetry installation script * [website](https://github.com/python-poetry/website): The official Poetry website and blog ## Supporters Thanks to [JetBrains](https://www.jetbrains.com) for supporting us with license
Release History
| Version | Changes | Urgency | Date |
|---|---|---|---|
| 2.3.4 | Imported from PyPI (2.3.4) | Low | 4/21/2026 |
| 2.3.3 | ### Fixed - **Fix a path traversal vulnerability in the wheel installer that could allow malicious wheel files to write files outside the intended installation directory** ([#10792](https://github.com/python-poetry/poetry/pull/10792)). - Fix an issue where `git` dependencies from annotated tags could not be updated ([#10719](https://github.com/python-poetry/poetry/pull/10719)). - Fix an issue where empty `VIRTUAL_ENV` or `CONDA_PREFIX` environment variables (e.g., after `conda deactivate`) | Medium | 3/29/2026 |
| 2.3.2 | ### Changed - Allow `dulwich>=1.0` ([#10701](https://github.com/python-poetry/poetry/pull/10701)). ### poetry-core ([`2.3.1`](https://github.com/python-poetry/poetry-core/releases/tag/2.3.1)) - Fix an issue where `platform_release` could not be parsed on Windows Server ([#911](https://github.com/python-poetry/poetry-core/pull/911)). | Low | 2/1/2026 |
| 2.3.1 | ### Fixed - Fix an issue where cached information about each package was always considered outdated ([#10699](https://github.com/python-poetry/poetry/pull/10699)). ### Docs - Document SHELL_VERBOSITY environment variable ([#10678](https://github.com/python-poetry/poetry/pull/10678)). | Low | 1/20/2026 |
| 2.3.0 | ### Added - **Add support for exporting `pylock.toml` files with `poetry-plugin-export`** ([#10677](https://github.com/python-poetry/poetry/pull/10677)). - Add support for specifying build constraints for dependencies ([#10388](https://github.com/python-poetry/poetry/pull/10388)). - Add support for publishing artifacts whose version is determined dynamically by the build-backend ([#10644](https://github.com/python-poetry/poetry/pull/10644)). - Add support for editable project plugins ([#10 | Low | 1/18/2026 |
| 2.2.1 | ### Fixed - Fix an issue where `poetry self show` failed with a message about an invalid output format ([#10560](https://github.com/python-poetry/poetry/pull/10560)). ### Docs - Remove outdated statements about dependency groups ([#10561](https://github.com/python-poetry/poetry/pull/10561)). ### poetry-core ([`2.2.1`](https://github.com/python-poetry/poetry-core/releases/tag/2.2.1)) - Fix an issue where it was not possible to declare a PEP 735 dependency group as optional ([#888]( | Low | 9/21/2025 |
| 2.2.0 | ### Added - **Add support for nesting dependency groups** ([#10166](https://github.com/python-poetry/poetry/pull/10166)). - **Add support for PEP 735 dependency groups** ([#10130](https://github.com/python-poetry/poetry/pull/10130)). - **Add support for PEP 639 license clarity** ([#10413](https://github.com/python-poetry/poetry/pull/10413)). - Add a `--format` option to `poetry show` to alternatively output json format ([#10487](https://github.com/python-poetry/poetry/pull/10487)). - Add | Low | 9/14/2025 |
| 2.1.4 | ### Changed - Require `virtualenv<20.33` to work around an issue where Poetry uses the wrong Python version ([#10491](https://github.com/python-poetry/poetry/pull/10491)). - Improve the error messages for the validation of the `pyproject.toml` file ([#10471](https://github.com/python-poetry/poetry/pull/10471)). ### Fixed - Fix an issue where project plugins were installed even though `poetry install` was called with `--no-plugins` ([#10405](https://github.com/python-poetry/poetry/pull/ | Low | 8/5/2025 |
| 2.1.3 | ### Changed - Require `importlib-metadata<8.7` for Python 3.9 because of a breaking change in importlib-metadata 8.7 ([#10374](https://github.com/python-poetry/poetry/pull/10374)). ### Fixed - Fix an issue where re-locking failed for incomplete multiple-constraints dependencies with explicit sources ([#10324](https://github.com/python-poetry/poetry/pull/10324)). - Fix an issue where the `--directory` option did not work if a plugin, which accesses the poetry instance during its activat | Low | 5/4/2025 |
| 2.1.2 | ### Changed - Improve performance of locking dependencies ([#10275](https://github.com/python-poetry/poetry/pull/10275)). ### Fixed - Fix an issue where markers were not locked correctly ([#10240](https://github.com/python-poetry/poetry/pull/10240)). - Fix an issue where the result of `poetry lock` was not deterministic ([#10276](https://github.com/python-poetry/poetry/pull/10276)). - Fix an issue where `poetry env activate` returned the wrong command for `tcsh` ([#10243](https://gith | Low | 3/29/2025 |
| 2.1.1 | ### Fixed - Fix an issue where `poetry env use python` does not choose the Python from the PATH ([#10187](https://github.com/python-poetry/poetry/pull/10187)). ### poetry-core ([`2.1.1`](https://github.com/python-poetry/poetry-core/releases/tag/2.1.1)) - Fix an issue where simplifying a `python_version` marker resulted in an invalid marker ([#838](https://github.com/python-poetry/poetry-core/pull/838)). | Low | 2/16/2025 |
| 2.1.0 | ### Added - **Make `build` command build-system agnostic** ([#10059](https://github.com/python-poetry/poetry/pull/10059), [#10092](https://github.com/python-poetry/poetry/pull/10092)). - Add a `--config-settings` option to `poetry build` ([#10059](https://github.com/python-poetry/poetry/pull/10059)). - Add support for defining `config-settings` when building dependencies ([#10129](https://github.com/python-poetry/poetry/pull/10129)). - **Add (experimental) commands to manage Python install | Low | 2/15/2025 |
| 2.0.1 | ### Added - Add support for `poetry search` in legacy sources ([#9949](https://github.com/python-poetry/poetry/pull/9949)). - Add a message in the `poetry source show` output when PyPI is implicitly enabled ([#9974](https://github.com/python-poetry/poetry/pull/9974)). ### Changed - Improve performance for merging markers from overrides at the end of dependency resolution ([#10018](https://github.com/python-poetry/poetry/pull/10018)). ### Fixed - Fix an issue where `poetry sync` d | Low | 1/12/2025 |
| 2.0.0 | ### Added - **Add support for the `project` section in the `pyproject.toml` file according to PEP 621** ([#9135](https://github.com/python-poetry/poetry/pull/9135), [#9917](https://github.com/python-poetry/poetry/pull/9917)). - **Add support for defining Poetry plugins that are required by the project and automatically installed if not present** ([#9547](https://github.com/python-poetry/poetry/pull/9547)). - **Lock resulting markers and groups and add a `installer.re-resolve` option (defaul | Low | 1/5/2025 |
| 1.8.5 | ### Changed - Require `pkginfo>=1.12` to fix an issue with an unknown metadata version 2.4 ([#9888](https://github.com/python-poetry/poetry/pull/9888)). - Do not fail if the unknown metadata version is only a minor version update ([#9888](https://github.com/python-poetry/poetry/pull/9888)). | Low | 12/6/2024 |
| 1.8.4 | ### Added - **Add official support for Python 3.13** ([#9523](https://github.com/python-poetry/poetry/pull/9523)). ### Changed - Require `virtualenv>=20.26.6` to mitigate potential command injection when running `poetry shell` in untrusted projects ([#9757](https://github.com/python-poetry/poetry/pull/9757)). ### poetry-core ([`1.9.1`](https://github.com/python-poetry/poetry-core/releases/tag/1.9.1)) - Add `3.13` to the list of available Python versions ([#747](https://github.com/ | Low | 10/14/2024 |
| 1.8.3 | ### Added - Add support for untagged CPython builds with versions ending with a `+` ([#9207](https://github.com/python-poetry/poetry/pull/9207)). ### Changed - Require `pkginfo>=1.10` to ensure support for packages with metadata version 2.3 ([#9130](https://github.com/python-poetry/poetry/pull/9130)). - Improve locking on FIPS systems ([#9152](https://github.com/python-poetry/poetry/pull/9152)). ### Fixed - Fix an issue where unrecognized package metadata versions silently result | Low | 5/8/2024 |
| 1.8.2 | ### Fixed - Harden `lazy-wheel` error handling if the index server is behaving badly in an unexpected way ([#9051](https://github.com/python-poetry/poetry/pull/9051)). - Improve `lazy-wheel` error handling if the index server does not handle HTTP range requests correctly ([#9082](https://github.com/python-poetry/poetry/pull/9082)). - Improve `lazy-wheel` error handling if the index server pretends to support HTTP range requests but does not respect them ([#9084](https://github.com/python-po | Low | 3/2/2024 |
| 1.8.1 | ### Fixed - Update the minimum required version of `packaging` ([#9031](https://github.com/python-poetry/poetry/pull/9031)). - Handle unexpected responses from servers that do not support HTTP range requests with negative offsets more robust ([#9030](https://github.com/python-poetry/poetry/pull/9030)). ### Docs - Rename `master` branch to `main` ([#9022](https://github.com/python-poetry/poetry/pull/9022)). | Low | 2/26/2024 |
| 1.8.0 | ### Added - **Add a `non-package` mode for use cases where Poetry is only used for dependency management** ([#8650](https://github.com/python-poetry/poetry/pull/8650)). - **Add support for PEP 658 to fetch metadata without having to download wheels** ([#5509](https://github.com/python-poetry/poetry/pull/5509)). - **Add a `lazy-wheel` config option (default: `true`) to reduce wheel downloads during dependency resolution** ([#8815](https://github.com/python-poetry/poetry/pull/8815), [#8941](h | Low | 2/25/2024 |
| 1.7.1 | ### Fixed - Fix an issue where sdists that call CLI tools of their build requirements could not be installed ([#8630](https://github.com/python-poetry/poetry/pull/8630)). - Fix an issue where sdists with symlinks could not be installed due to a broken tarfile datafilter ([#8649](https://github.com/python-poetry/poetry/pull/8649)). - Fix an issue where `poetry init` failed when trying to add dependencies ([#8655](https://github.com/python-poetry/poetry/pull/8655)). - Fix an issue where `poe | Low | 11/16/2023 |
| 1.7.0 | ### Added - **Add official support for Python 3.12** ([#7803](https://github.com/python-poetry/poetry/pull/7803), [#8544](https://github.com/python-poetry/poetry/pull/8544)). - **Print a future warning that `poetry-plugin-export` will not be installed by default anymore** ([#8562](https://github.com/python-poetry/poetry/pull/8562)). - Add `poetry-install` pre-commit hook ([#8327](https://github.com/python-poetry/poetry/pull/8327)). - Add `--next-phase` option to `poetry version` ([#8089](h | Low | 11/3/2023 |
| 1.6.1 | ### Fixed - Update the minimum required version of `requests` ([#8336](https://github.com/python-poetry/poetry/pull/8336)). | Low | 8/21/2023 |
| 1.6.0 | ### Added - **Add support for repositories that do not provide a supported hash algorithm** ([#8118](https://github.com/python-poetry/poetry/pull/8118)). - **Add full support for duplicate dependencies with overlapping markers** ([#7257](https://github.com/python-poetry/poetry/pull/7257)). - **Improve performance of `poetry lock` for certain edge cases** ([#8256](https://github.com/python-poetry/poetry/pull/8256)). - Improve performance of `poetry install` ([#8031](https://github.com/pytho | Low | 8/20/2023 |
| 1.5.1 | ### Added - Improve dependency resolution performance in cases with a lot of backtracking ([#7950](https://github.com/python-poetry/poetry/pull/7950)). ### Changed - Disable wheel content validation during installation ([#7987](https://github.com/python-poetry/poetry/pull/7987)). ### Fixed - Fix an issue where partially downloaded wheels were cached ([#7968](https://github.com/python-poetry/poetry/pull/7968)). - Fix an issue where `poetry run` did no longer execute relative-path | Low | 5/29/2023 |
| 1.5.0 | ### Added - **Introduce the new source priorities `explicit` and `supplemental`** ([#7658](https://github.com/python-poetry/poetry/pull/7658), [#6879](https://github.com/python-poetry/poetry/pull/6879)). - **Introduce the option to configure the priority of the implicit PyPI source** ([#7801](https://github.com/python-poetry/poetry/pull/7801)). - Add handling for corrupt cache files ([#7453](https://github.com/python-poetry/poetry/pull/7453)). - Improve caching of URL and git dependencies | Low | 5/19/2023 |
| 1.4.2 | ### Changed - When trying to install wheels with invalid `RECORD` files, Poetry does not fail anymore but only prints a warning. This mitigates an unintended change introduced in Poetry 1.4.1 ([#7694](https://github.com/python-poetry/poetry/pull/7694)). ### Fixed - Fix an issue where relative git submodule urls were not parsed correctly ([#7017](https://github.com/python-poetry/poetry/pull/7017)). - Fix an issue where Poetry could freeze when building a project with a build script i | Low | 4/2/2023 |
| 1.4.1 | ### Fixed - Fix an issue where `poetry install` did not respect the requirements for building editable dependencies ([#7579](https://github.com/python-poetry/poetry/pull/7579)). - Fix an issue where `poetry init` crashed due to bad input when adding packages interactively ([#7569](https://github.com/python-poetry/poetry/pull/7569)). - Fix an issue where `poetry install` ignored the `subdirectory` argument of git dependencies ([#7580](https://github.com/python-poetry/poetry/pull/7580)). - F | Low | 3/19/2023 |
| 1.4.0 | ### Added - **Add a modern installer (`installer.modern-installation`) for faster installation of packages and independence from pip** ([#6205](https://github.com/python-poetry/poetry/pull/6205)). - Add support for `Private ::` trove classifiers ([#7271](https://github.com/python-poetry/poetry/pull/7271)). - Add the version of poetry in the `@generated` comment at the beginning of the lock file ([#7339](https://github.com/python-poetry/poetry/pull/7339)). - Add support for `virtualenvs.pre | Low | 2/27/2023 |
| 1.3.2 | ### Fixed - Fix a performance regression when locking dependencies from PyPI ([#7232](https://github.com/python-poetry/poetry/pull/7232)). - Fix an issue where passing a relative path via `-C, --directory` fails ([#7266](https://github.com/python-poetry/poetry/pull/7266)). ### Docs - Update docs to reflect the removal of the deprecated `get-poetry.py` installer from the repository ([#7288](https://github.com/python-poetry/poetry/pull/7288)). - Add clarifications for `virtualenvs.path` | Low | 1/10/2023 |
| 1.3.1 | ### Fixed - Fix an issue where an explicit dependency on `lockfile` was missing, resulting in a broken Poetry in rare circumstances ([7169](https://github.com/python-poetry/poetry/pull/7169)). | Low | 12/12/2022 |
| 1.3.0 | ### Added - Mark the lock file with an `@generated` comment as used by common tooling ([#2773](https://github.com/python-poetry/poetry/pull/2773)). - `poetry check` validates trove classifiers and warns for deprecations ([#2881](https://github.com/python-poetry/poetry/pull/2881)). - Introduce a top level `-C, --directory` option to set the working path ([#6810](https://github.com/python-poetry/poetry/pull/6810)). ### Changed - **New lock file format (version 2.0)** ([#6393](https://gith | Low | 12/9/2022 |
| 1.2.2 | ### Added - Add forward compatibility for lock file format 2.0, which will be used by Poetry 1.3 ([#6608](https://github.com/python-poetry/poetry/pull/6608)). ### Changed - Allow `poetry lock` to re-generate the lock file when invalid or incompatible ([#6753](https://github.com/python-poetry/poetry/pull/6753)). ### Fixed - Fix an issue where the deprecated JSON API was used to query PyPI for available versions of a package ([#6081](https://github.com/python-poetry/poetry/pull/6081 | Low | 10/10/2022 |
| 1.2.1 | ### Changed - Bump `poetry-core` to [`1.2.0`](https://github.com/python-poetry/poetry-core/releases/tag/1.2.0). - Bump `poetry-plugin-export` to [`^1.0.7`](https://github.com/python-poetry/poetry-plugin-export/releases/tag/1.0.7). ### Fixed - Fix an issue where `poetry cache clear` did not respect the `-n/--no-interaction` flag ([#6338](https://github.com/python-poetry/poetry/pull/6338)). - Fix an issue where `poetry lock --no-update` updated dependencies from non-PyPI package sources ( | Low | 9/16/2022 |
| 1.2.0 | Note that this release makes the new install format (and thus [new installer][install.python-poetry.org] or an alternative [supported install method][install docs]) a hard requirement. If you are currently installing using the deprecated `get-poetry.py`, you will be unable to install Poetry 1.2. Additionally, Poetry 1.1 installed using `get-poetry.py` will be not be able to update using `poetry self update`. See the [1.2.0 release announcement](https://python-poetry.org/blog/announcing-po | Low | 8/31/2022 |
| 1.2.0rc2 | ### Fixed - Fixed an issue where virtual environments were created unnecessarily when running `poetry self` commands ([#6226](https://github.com/python-poetry/poetry/pull/6226)) - Ensure that packages' `pretty_name` are written to the lock file ([#6243](https://github.com/python-poetry/poetry/pull/6243)) ### Improvements - Improved the consistency of `Pool().remove_repository()` to make it easier to write poetry plugins ([#6231](https://github.com/python-poetry/poetry/pull/6231)) ## | Low | 8/26/2022 |
| 1.2.0rc1 | ### Added - Added support for subdirectories in git dependencies ([#5172](https://github.com/python-poetry/poetry/pull/5172)) - Added support for yanked releases and files (PEP-592) ([#5841](https://github.com/python-poetry/poetry/pull/5841)) - Virtual environments can now be created even with empty project names ([#5856](https://github.com/python-poetry/poetry/pull/5856)) - Added support for `nushell` in `poetry shell` ([#6063](https://github.com/python-poetry/poetry/pull/6063)) ### Ch | Low | 8/23/2022 |
| 1.1.15 | ### Changed - Poetry now fallback to gather metadata for dependencies via pep517 if parsing pyproject.toml fail ([#6206](https://github.com/python-poetry/poetry/pull/6206)) - Extras and extras dependencies are now sorted in lock file ([#6207](https://github.com/python-poetry/poetry/pull/6207)) | Low | 8/22/2022 |
| 1.2.0b3 | **Important**: This release fixes a critical issue that prevented hashes from being retrieved when locking dependencies, due to a breaking change on PyPI JSON API (see [#5972](https://github.com/python-poetry/poetry/pull/5972) and [the upstream change](https://github.com/pypi/warehouse/pull/11775) for more details). After upgrading, you have to clear Poetry cache manually to get that feature working correctly again: ```bash $ poetry cache clear pypi --all ``` ### Added - Added `- | Low | 7/13/2022 |
| 1.1.14 | ## Fixed - Fixed an issue where dependencies hashes could not be retrieved when locking due to a breaking change on PyPI JSON API ([#5973](https://github.com/python-poetry/poetry/pull/5973)) | Low | 7/8/2022 |
| 1.2.0b2 | ### Added - Added support for multiple-constraint direct origin dependencies with the same version ([#5715](https://github.com/python-poetry/poetry/pull/5715)) - Added support disabling TLS verification for custom package sources via `poetry config certificates.<repository>.cert false` ([#5719](https://github.com/python-poetry/poetry/pull/5719) - Added new configuration (`virtualenvs.prompt`) to customize the prompt of the Poetry-managed virtual environment ([#5606](https://github.com/pytho | Low | 6/6/2022 |
| 1.2.0b1 | ### Fixed - Fixed an issue where the system environment couldn't be detected ([#4406](https://github.com/python-poetry/poetry/pull/4406)). - Fixed another issue where the system environment couldn't be detected ([#4433](https://github.com/python-poetry/poetry/pull/4433)). - Replace deprecated requests parameter in uploader ([#4580](https://github.com/python-poetry/poetry/pull/4580)). - Fix an issue where venv are detected as broken when using MSys2 on windows ([#4482](https://github.com/py | Low | 3/17/2022 |
| 1.1.13 | ## Fixed - Fixed an issue where envs in MSYS2 always reported as broken ([#4942](https://github.com/python-poetry/poetry/pull/4942)) - Fixed an issue where conda envs in windows are always reported as broken([#5008](https://github.com/python-poetry/poetry/pull/5008)) - Fixed an issue where Poetry doesn't find its own venv on `poetry self update` ([#5048](https://github.com/python-poetry/poetry/pull/5048)) | Low | 2/10/2022 |
| 1.1.12 | ### Fixed - Fixed broken caches on Windows due to `Path` starting with a slash ([#4549](https://github.com/python-poetry/poetry/pull/4549)) - Fixed `JSONDecodeError` when installing packages by updating `cachecontrol` version ([#4831](https://github.com/python-poetry/poetry/pull/4831)) - Fixed dropped markers in dependency walk ([#4686](https://github.com/python-poetry/poetry/pull/4686)) | Low | 11/28/2021 |
| 1.1.11 | ### Fixed - Fixed errors when installing packages on Python 3.10. ([#4592](https://github.com/python-poetry/poetry/pull/4592)) - Fixed an issue where the wrong `git` executable could be used on Windows. ([python-poetry/poetry-core#213](https://github.com/python-poetry/poetry-core/pull/213)) - Fixed an issue where the Python 3.10 classifier was not automatically added. ([python-poetry/poetry-core#215](https://github.com/python-poetry/poetry-core/pull/215)) | Low | 10/4/2021 |
| 1.1.10 | ### Fixed - Fixed an issue where non-sha256 hashes were not checked. ([#4529](https://github.com/python-poetry/poetry/pull/4529)) | Low | 9/21/2021 |
| 1.1.9 | ### Fixed - Fixed a security issue where file hashes were not checked prior to installation. ([#4420](https://github.com/python-poetry/poetry/pull/4420), [#4444](https://github.com/python-poetry/poetry/pull/4444), [python-poetry/poetry-core#193](https://github.com/python-poetry/poetry-core/pull/193)) - Fixed the detection of the system environment when the setting `virtualenvs.create` is deactivated. ([#4507](https://github.com/python-poetry/poetry/pull/4507)) - Fixed an issue where unsafe | Low | 9/18/2021 |
| 1.1.8 | ### Fixed - Fixed an error with repository prioritization when specifying secondary repositories. ([#4241](https://github.com/python-poetry/poetry/pull/4241)) - Fixed the detection of the system environment when the setting `virtualenvs.create` is deactivated. ([#4330](https://github.com/python-poetry/poetry/pull/4330), [#4407](https://github.com/python-poetry/poetry/pull/4407)) - Fixed the evaluation of relative path dependencies. ([#4246](https://github.com/python-poetry/poetry/pull/4246) | Low | 8/19/2021 |
| 1.2.0a2 | ### Added - Poetry now supports dependency groups. ([#4260](https://github.com/python-poetry/poetry/pull/4260)) - The `install` command now supports a `--sync` option to synchronize the environment with the lock file. ([#4336](https://github.com/python-poetry/poetry/pull/4336)) ### Changed - Improved the way credentials are retrieved to better support keyring backends. ([#4086](https://github.com/python-poetry/poetry/pull/4086)) - The `--remove-untracked` option of the `install` comma | Low | 8/1/2021 |
| 1.1.7 | **Note**: Lock files might need to be regenerated for the first fix below to take effect. You can use `poetry lock` to do so **without** the `--no-update` option. ### Changed - This release is compatible with the `install-poetry.py` installation script to ease the migration path from `1.1` releases to `1.2` releases. ([#4192](https://github.com/python-poetry/poetry/pull/4192)) ### Fixed - Fixed an issue where transitive dependencies of directory or VCS dependencies were not installe | Low | 6/25/2021 |
Dependencies & License Audit
Loading dependencies...