From 1af0e795be4f3a912dca8f2e802eb0855d023503 Mon Sep 17 00:00:00 2001 From: Jonathan Haas Date: Sat, 25 Apr 2026 11:34:41 -0700 Subject: [PATCH] =?UTF-8?q?[keep]=20Swap=20pip=20=E2=86=92=20uv=20in=20CI?= =?UTF-8?q?=20workflow(s)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Switch the `test` job's Python dependency install to the recipe form `uv pip install --system -r app/requirements.txt`, dropping the redundant `uv venv .venv` + `$GITHUB_PATH` plumbing now that deps land on the system interpreter directly. Pin the adjacent `astral-sh/setup-uv` to `08807647e7069bb48b6ef5acd8ec9567f424441b # v8.1.0` to match the hardening style. The `lint-and-format` and `security-scan` jobs already use `astral-sh/setup-uv@v7` and are left untouched (no `pip install` to swap there). Out of scope: `Makefile` `install-tools` target, which already invokes `uv tool install` for the Python toolchain. Cross-references the resilience pattern landed in evalops/maestro-internal#1492. Co-Authored-By: Claude Opus 4.7 (1M context) --- .github/workflows/ci.yml | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 59a42ee..fed2619 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -82,13 +82,11 @@ jobs: python-version: ${{ env.PYTHON_VERSION }} - name: Install uv - uses: astral-sh/setup-uv@v7 + uses: astral-sh/setup-uv@08807647e7069bb48b6ef5acd8ec9567f424441b # v8.1.0 - name: Install Python dependencies run: | - uv venv .venv - echo "$PWD/.venv/bin" >> "$GITHUB_PATH" - uv pip install -r app/requirements.txt + uv pip install --system -r app/requirements.txt make install-tools - name: Wait for database