Workflow

Pdm

Latest version: v2.23.0

Safety actively analyzes 723625 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 26 of 37

1.5.1

Not secure
---------------------------

Bug Fixes

- Make func translate_sections pure to avoid exporting requirements in random order. [401](https://github.com/pdm-project/pdm/issues/401)
- Expand the variables in install requirements' attributes for build. [402](https://github.com/pdm-project/pdm/issues/402)

1.5.0

Not secure
---------------------------

Features & Improvements

- Include dev dependencies by default for `install` and `sync` commands. Add a new option `--prod/--production` to exclude them. Improve the dependency selection logic to be more convenient to use — the more common the usage is, the shorter the command is. [391](https://github.com/pdm-project/pdm/issues/391)

Bug Fixes

- Enquote executable path to ensure generating valid scripts. [387](https://github.com/pdm-project/pdm/issues/387)
- Consider hashes when fetching artifact link for build. [389](https://github.com/pdm-project/pdm/issues/389)
- Consider the sources settings when building. [399](https://github.com/pdm-project/pdm/issues/399)

Improved Documentation

- New pdm setting `source-includes` to mark files to be included only in sdist builds. [390](https://github.com/pdm-project/pdm/issues/390)

Dependencies

- Update `pdm-pep517` to `0.7.0`; update `resolvelib` to` 0.7.0`. [390](https://github.com/pdm-project/pdm/issues/390)

Removals and Deprecations

- Deprecate the usage of `-d/--dev` option in `install` and `sync` commands. [391](https://github.com/pdm-project/pdm/issues/391)

1.5.0b1

Not secure
-----------------------------

Features & Improvements

- Improve the env builder to run in isolated mode. [384](https://github.com/pdm-project/pdm/issues/384)

Bug Fixes

- Remove the incompatible code from the files that will be run in-process. [375](https://github.com/pdm-project/pdm/issues/375)
- Get the correct Python ABI tag of selected interpreter [378](https://github.com/pdm-project/pdm/issues/378)
- Error out when doing `pdm run` on a directory not initialized yet.
- Give warning message when the project automatically fallbacks to the global project.

Dependencies

- Upgrade `resolvelib` to `0.6.0`. [381](https://github.com/pdm-project/pdm/issues/381)

Miscellany

- refactor `pdm.models.readers` to improve typing support [321](https://github.com/pdm-project/pdm/issues/321)
- Add a basic integration test for cross-python check. [377](https://github.com/pdm-project/pdm/issues/377)
- Refactor the `project.python_executable` to `project.python` that contains all info of the interpreter. [382](https://github.com/pdm-project/pdm/issues/382)
- Continue refactoring Python info to extract to its own module. [383](https://github.com/pdm-project/pdm/issues/383)
- Refactor the creation of project.

1.5.0b0

Not secure
-----------------------------

Features & Improvements

- Add hand-written zsh completion script. [188](https://github.com/pdm-project/pdm/issues/188)
- Add a special value `:all` given to `-s/--section` to refer to all sections under the same species.
Adjust `add`, `sync`, `install`, `remove` and `update` to support the new `dev-dependencies` groups. Old behavior will be kept the same. [351](https://github.com/pdm-project/pdm/issues/351)
- `dev-dependencies` is now a table of dependencies groups, where key is the group name and value is an array of dependencies. These dependencies won't appear in the distribution's metadata. `dev-dependencies` of the old format will turn into `dev` group under `dev-dependencies`. [351](https://github.com/pdm-project/pdm/issues/351)
- Move `dev-dependencies`, `includes`, `excludes` and `package-dir` out from `[project]` table to `[tool.pdm]` table. The migration will be done automatically if old format is detected. [351](https://github.com/pdm-project/pdm/issues/351)
- Throws an error with meaningful message when no candidate is found for one requirement. [357](https://github.com/pdm-project/pdm/issues/357)
- Support `--dry-run` option for `update` command to display packages that need update, install or removal. Add `--top` option to limit to top level packages only. [358](https://github.com/pdm-project/pdm/issues/358)
- Full-featured completion scripts for Zsh and Powershell - section selection, package name autocompletion and so on. Windows is a first-class citizen! [367](https://github.com/pdm-project/pdm/issues/367)
- Support non-interactive `init` command via `-n/--non-interactive` option. No question will be asked in this mode. [368](https://github.com/pdm-project/pdm/issues/368)
- Show project packages path(PEP 582) in the output of `pdm info`, also add an option `--packages` to show that value only. [372](https://github.com/pdm-project/pdm/issues/372)

Bug Fixes

- Fix a bug that pure python libraries are not loaded to construct the WorkingSet. [346](https://github.com/pdm-project/pdm/issues/346)
- Don't write `<script>-X.Y` variant to the bin folder. [365](https://github.com/pdm-project/pdm/issues/365)
- Python is now run in isolated mode via subprocess to avoid accidentally importing user packages. [369](https://github.com/pdm-project/pdm/issues/369)
- Don't overwrite existing dependencies when importing from requirements.txt. [370](https://github.com/pdm-project/pdm/issues/370)

Improved Documentation

- Add instructions of how to integrate PDM with Emacs, contributed by linw1995. [372](https://github.com/pdm-project/pdm/issues/372)

Removals and Deprecations

- Remove the support of project path following `-g/--global` that was deprecated in `1.4.0`. One should use `-g -p <project_path>` for that purpose. [361](https://github.com/pdm-project/pdm/issues/361)

Miscellany

- Add test coverage to PDM. [109](https://github.com/pdm-project/pdm/issues/109)
- Add type annotations into untyped functions to start using mypy. [354](https://github.com/pdm-project/pdm/issues/354)
- Refactor the format converter code to be more explicit. [360](https://github.com/pdm-project/pdm/issues/360)

1.4.5

Not secure
---------------------------

Features & Improvements

- Skip the first prompt of `pdm init` [352](https://github.com/pdm-project/pdm/issues/352)

Bug Fixes

- Fix a test failure when using homebrew installed python. [348](https://github.com/pdm-project/pdm/issues/348)
- Get revision from the VCS URL if source code isn't downloaded to local. [349](https://github.com/pdm-project/pdm/issues/349)

Dependencies

- Update dependency `pdm-pep517` to `0.6.1`. [353](https://github.com/pdm-project/pdm/issues/353)

1.4.4

Not secure
---------------------------

Features & Improvements

- Emit warning if version or description can't be retrieved when importing from flit metadata. [342](https://github.com/pdm-project/pdm/issues/342)
- Add `type` argument to `pdm cache clear` and improve its UI. [343](https://github.com/pdm-project/pdm/issues/343)
- Always re-install the editable packages when syncing the working set. This can help tracking the latest change of `entry-points`. [344](https://github.com/pdm-project/pdm/issues/344)

Bug Fixes

- Make installer quit early if a wheel isn't able to build. [338](https://github.com/pdm-project/pdm/issues/338)

Miscellany

- ignore type checking in `models.project_info.ProjectInfo`, which indexes `distlib.metadata._data` [335](https://github.com/pdm-project/pdm/issues/335)

Page 26 of 37

Links

Releases

Has known vulnerabilities

Previous Next

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.