Fix #839, move `setup.py` metadata & config settings into `pyproject.toml`, & remove `requirements.txt` #959

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed

mhucka wants to merge 21 commits into quantumlib:main from mhucka:mh-more-pyproject

GitHub Advanced Security / Scorecard completed Jan 1, 2026 in 7s

1 configuration not found

Warning: Code scanning may not have found all the alerts introduced by this pull request, because 1 configuration present on refs/heads/main was not found:

Actions workflow (`scorecard-scanner.yaml`)

❓ supply-chain/branch-protection

New alerts in code changed by this pull request

Security Alerts:

12 medium

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 80 in .github/workflows/ci.yaml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 81 in .github/workflows/ci.yaml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 246 in .github/workflows/ci.yaml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 247 in .github/workflows/ci.yaml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 333 in .github/workflows/ci.yaml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 334 in .github/workflows/ci.yaml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 390 in .github/workflows/ci.yaml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 391 in .github/workflows/ci.yaml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 63 in .github/workflows/cirq_compatibility.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 55 in Dockerfile

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 55 in Dockerfile

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 55 in Dockerfile

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 2: pipCommand not pinned by hash
Click Remediation section below to solve this issue