Hey folks. We have an SDK tap with a

poetry.lock

file locking the

singer-sdk

dependency to 0.3.8, and that lock file is committed to the repo. However, when we install the tap in our Meltano project (using a git repo link, if that matters), it ignores the lock file and uses 0.3.11. This happened to cause a breaking change. That’s not to say that there’s a breaking change in the sdk; we overrode

request_records

for a

RESTStream

, at our own risk. But I would have thought the lock file would have protected us from this. Is this a known issue, does

pip install

not know how to correctly install poetry apps? Or is there a setting we can add to our project files to fix this?