forked from cartsnitch/cartsnitch
Test User
3216e6a1c2
- Bump cryptography>=46.0 to fix GHSA-r6ph-v2qm-q3c2 - Increment APT_CACHE_BUST to 1 to force fresh apt-get upgrade for OpenSSL/libssl3t64 (fixes CVE-2026-2673, CVE-2026-28388, CVE-2026-28389, CVE-2026-28390, CVE-2026-31790) - Add 89 Chrome CVEs to grype.yaml ignore (Playwright bundles Chromium — CVEs can only be resolved by upgrading Playwright) - Add node CVE-2026-21710 to grype.yaml ignore (Playwright bundled tooling dependency) Co-Authored-By: Paperclip <noreply@paperclip.ing>
60 lines
1.3 KiB
TOML
60 lines
1.3 KiB
TOML
[build-system]
|
|
requires = ["hatchling"]
|
|
build-backend = "hatchling.build"
|
|
|
|
[project]
|
|
name = "receiptwitness"
|
|
version = "0.1.0"
|
|
description = "CartSnitch receipt/purchase history ingestion service"
|
|
requires-python = ">=3.12"
|
|
dependencies = [
|
|
"cartsnitch-common>=0.1.0",
|
|
"playwright>=1.49,<2.0",
|
|
"playwright-stealth>=1.0,<2.0",
|
|
"cryptography>=46.0,<47.0",
|
|
"fastapi>=0.115,<1.0",
|
|
"uvicorn[standard]>=0.30,<1.0",
|
|
"beautifulsoup4>=4.12,<5.0",
|
|
"redis>=5.0,<6.0",
|
|
"pydantic>=2.0,<3.0",
|
|
"pydantic-settings>=2.0,<3.0",
|
|
"sqlalchemy[asyncio]>=2.0,<3.0",
|
|
"asyncpg>=0.29,<1.0",
|
|
"resend>=2.0",
|
|
]
|
|
|
|
[project.optional-dependencies]
|
|
dev = [
|
|
"pytest>=8.0",
|
|
"pytest-asyncio>=0.23",
|
|
"ruff>=0.3",
|
|
"pytest-cov>=5.0",
|
|
"fakeredis[aioredis]>=2.20",
|
|
"httpx>=0.27",
|
|
"python-multipart>=0.0.9",
|
|
]
|
|
|
|
[tool.hatch.build.targets.wheel]
|
|
packages = ["src/receiptwitness"]
|
|
|
|
[tool.ruff]
|
|
target-version = "py312"
|
|
line-length = 100
|
|
|
|
[tool.ruff.lint]
|
|
select = ["E", "F", "I", "N", "W", "UP"]
|
|
|
|
[tool.mypy]
|
|
python_version = "3.12"
|
|
strict = false
|
|
warn_return_any = true
|
|
warn_unused_ignores = true
|
|
|
|
[[tool.mypy.overrides]]
|
|
module = "cartsnitch_common.*"
|
|
ignore_missing_imports = true
|
|
|
|
[tool.pytest.ini_options]
|
|
asyncio_mode = "auto"
|
|
testpaths = ["tests"]
|