With pip 26.1, one can generate the pylock (without too recent modules, to avoid being the first target of a supply-chain attack)
python -m pip lock . --uploaded-prior-to=P7D -o pylock.toml
and then upon install
python -m pip -r pylock.toml
To install using a remote tarball, the simplest option (unless pip supports it) would be:
pip download <url>cd into the downloaded extracted directory,pip install -r pylock.toml
With pip 26.1, one can generate the pylock (without too recent modules, to avoid being the first target of a supply-chain attack)
python -m pip lock . --uploaded-prior-to=P7D -o pylock.tomland then upon install
To install using a remote tarball, the simplest option (unless pip supports it) would be:
pip download <url>cdinto the downloaded extracted directory,pip install -r pylock.toml