POETRY LOCK FIX: Handle out-of-sync poetry.lock files
Issue Fixed:
❌ pyproject.toml changed significantly since poetry.lock was last generated
❌ poetry install --no-root failing due to lock file mismatch
Solution Applied:
✅ Added poetry.lock sync check before installation
✅ Automatic poetry.lock regeneration when needed
✅ Graceful handling of lock file updates
✅ Continued dependency installation after lock sync
Changes Made:
1. Lock File Check:
- Added poetry check --lock validation
- Conditional installation based on lock status
2. Automatic Regeneration:
- poetry lock --no-update when out of sync
- Followed by poetry install --no-root
3. Error Prevention:
- Prevents installation failures
- Maintains dependency consistency
- Handles CI environment properly
Impact:
- Security scanning workflow now works reliably
- Poetry dependency installation succeeds
- No more lock file mismatch errors
- Security scans complete successfully
This resolves the critical issue where the security scanning
workflow was failing due to poetry.lock being out of sync
with pyproject.toml changes.
aitbc1
4c76b43ee8