Pipenv

Pipenv is a Python virtualenv management tool that supports a multitude of systems and nicely bridges the gaps between pip, python (using system python, pyenv or asdf) and virtualenv. Linux, macOS, and Windows are all first-class citizens in pipenv.

Pipenv automatically creates and manages a virtualenv for your projects, as well as adds/removes packages from your Pipfile as you install/uninstall packages. It also generates a project Pipfile.lock, which is used to produce deterministic builds.

Pipenv is primarily meant to provide users and developers of applications with an easy method to arrive at a consistent working project environment.

The problems that Pipenv seeks to solve are multi-faceted:

• You no longer need to use pip and virtualenv separately: they work together.
• Managing a requirements.txt file with package hashes can be problematic. Pipenv uses Pipfile and Pipfile.lock to separate abstract dependency declarations from the last tested combination.
• Hashes are documented in the lock file which are verified during install. Security considerations are put first.
• Strongly encourage the use of the latest versions of dependencies to minimize security risks arising from outdated components.
• Gives you insight into your dependency graph (e.g. $ pipenv graph).
• Streamline development workflow by supporting local customizations with .env files.