Workflow

Pex

Latest version: v2.33.7

Safety actively analyzes 723177 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 2 of 57

2.33.4

This release fixes PEX scies to exclude a ptex binary for `--scie eager` scies saving ~5MB on scies
targeting 64 bit systems.

* Do not include `ptex` in `--scie eager` scies. (2717)

2.33.3

This release fixes Pex Zip64 support such that PEX zips do not use Zip64 extensions unless needed.
Previously, any zip between ~2GB and ~4GB that actually fell under Zip64 limits would still use
Zip64 extensions. This prevented the file from being bootable under Python before the 3.13 release
since the `zipimporter` was not fixed to support ZIp64 extensions until then.

The `--scie-only` option is fixed for the case when the `-o` / `--output-file` name does not end in
`.pex`. Previously there would be no scie (or PEX) output at all!

Finally, this release fixes PEX scies such that, when split, the embedded PEX is both executable and
retains the expected name as provided by `-o` / `--output-file`.

* Enable true Zip64 support. (2714)
* Fix `--scie-only` for `-o` not ending in `.pex`. (2715)
* Fix PEX scie contents when split. (2713)

2.33.2

This release fixes PEXes build with root requirements like `foo[bar] foo[baz]` (vs. `foo[bar,baz]`,
which worked already).

* Fix dup requirement extra merging during PEX boot. (2707)

2.33.1

This release fixes a bug in both `pex3 lock subset` and
`pex3 lock {create,sync,update} --elide-unused-requires-dist` for `--style universal` locks whose
locked requirements have dependencies de-selected by the following environment markers:
+ `os_name`
+ `platform_system`
+ `sys_platform`
+ `python_version`
+ `python_full_version`

The first three could lead to errors when the universal lock was generated with `--target-system`s
and the last two could lead to errors when the universal lock was generated with
`--interpreter-constraint`.

* Fix `pex3 lock subset`. (2684)

2.33.0

This release adds support for Pip 25.0.1.

* Add support for `--pip-version 25.0.1`. (2671)

2.32.1

This release fixes a long-standing bug handling development versions of
CPython (any non-tagged release of the interpreter). These interpreters
report a full version of `X.Y.Z+` and the trailing `+` leads to a non
PEP-440 compliant version number. This, in turn, causes issues with the
`packaging` library leading to failures to evaluate markers for these
interpreters which surface as inscrutable Pex errors.

* Fix support for CPython development releases. (2655)

Page 2 of 57

Links

Releases

Has known vulnerabilities

Previous Next

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.