This change replaces the `--no-binary` option introduced in #5600 as
the original implementation could cause inconsistent results when the
add, update or lock commands were used.

This implementation makes use of a new configuration
`installer.no-binary` to allow for user specification of sdist
preference for select packages.

With this change, Poetry now creates an ephemeral build environment
with all requirements specified under `build-system.requires` when a
build script is specified. Otherwise, project environment is reused.

Prior to this change when Poetry builds a project with a setup.py file,
as in the case when `generate-setup-file` was set to true, `pip`
fallback was invoked with a PEP 517 isolated build causing it to fail.

This was a regression in functionality from Poetry 1.1 build script
usage. However, note that build script usage is an experimental
feature.

This change ensures that http-basic auth credentials are only passed to
dulwich when the remote url uses http/https schemes.

In addition to the above, it is now ensured that username/password
parameters are not passed through to dulwich unless both username and
password are configured explicitly. This is to ensure that dulwich does
not bail out if it detects a username in the url
(eg: `ssh://git@github.com`).

Since git repository authentication is a special case of repository
configuration, the existing assumptions around path matching do not
apply. In order to prevent unexpected behaviour due to similar path
matching, git authentication will use exact url matching.

Prior to this change when `Config` was initialised for non-command use,
user `config.toml` and `auth.toml` files were not loaded. This caused
unintended side effects when configuration look up were performed from
the `Authenticator` and other parts of the code.

bump version of poetry-plugin-export to 1.0.2 (rename of implicit dependency group from "default" to "main")

updates:
- [github.com/asottile/pyupgrade: v2.32.0 → v2.32.1](https://github.com/asottile/pyupgrade/compare/v2.32.0...v2.32.1)
- [github.com/pre-commit/pre-commit: v2.18.1 → v2.19.0](https://github.com/pre-commit/pre-commit/compare/v2.18.1...v2.19.0)

Co-authored-by: Markus Maga <markus@maga.se>

Co-authored-by: Bjorn Neergaard <bjorn@neersighted.com>

The hook is now obsolete, since `ignore-without-code` from `mypy` already checks for too broad `# type: ignore`

Co-authored-by: Bjorn Neergaard <bjorn@neersighted.com>

* enable strict mypy checking
* treat poetry.core as untyped
* python 3.7 typechecking

tests/helpers: restore symlink fallback on Windows if no administrative privileges or developer mode

With this change users no longer need to configure source url
explicitly via `repositories` configuration values when credentials are
required.

This change makes use of existing repository authentication mechanisms
to enable http authentication for git dependencies.

This change allows users to make use of find-links style single page
sources that do not present a PEP 503 simple API repository.

Co-authored-by: Agni Sairent <agniczech@gmail.com>
Co-authored-by: Dos Moonen <darsstar@gmail.com>

This change refactors HTTP repository source implementations. The
following changes have been made.

- CacheControl cache now lives within Authenticator.
- Authenticator manages unique sessions for individual netloc.
- CacheControl usage now respects disable cache parameter in repos.
- Certificate and authentication logic is now managed solely within
  Authenticator for source repositories taking advantage of recent
  enhancements.

These changes should allow for better handling of cases like those
described in #3041. Additionally, this forms the foundation for
unifying HTTP specific logic within the code base and possibly allowing
for migration of requests etc. if/when required.