chore(deps): remove pip hash requirement from scripts and dependencies

Author: wmontwe

scripts/README.md

@@ -9,7 +9,7 @@ Various scripts for CI/CD, release automation, and development tasks.
 Install direct dependencies (hashed, no transitive deps):
 
 ```bash
-python3 -m pip install --require-hashes --no-deps -r scripts/requirements.txt
+python3 -m pip install -r scripts/requirements.txt
 ```
 
 ### Available Scripts
@@ -29,7 +29,7 @@ It's recommended to use a virtual environment:
 ```bash
 python3 -m venv venv
 source venv/bin/activate  # On macOS/Linux
-python3 -m pip install --require-hashes --no-deps -r scripts/requirements.txt
+python3 -m pip install -r scripts/requirements.txt
 ```
 
 To deactivate: `deactivate`
@@ -52,27 +52,3 @@ The `requirements.txt` includes **4 direct dependencies** (all pinned to specifi
 - **PyYAML** - YAML parsing for release notes
 - **Jinja2** - Template rendering for changelog files
 - **requests** - HTTP client for GitHub API interactions
-
-## Updating requirements.txt hashes
-
-If `./scripts/test_python_scripts.sh` fails with a `--require-hashes` error, regenerate hashes using a temporary no-hash file:
-
-```bash
-cp scripts/requirements.txt /tmp/requirements-no-hash.txt
-python3 - <<'PY'
-import re, pathlib
-path = pathlib.Path('/tmp/requirements-no-hash.txt')
-text = path.read_text()
-text = re.sub(r"\s+--hash=sha256:[a-f0-9]+", "", text)
-path.write_text(text)
-print("Wrote", path)
-PY
-
-mkdir -p /tmp/pip-hashes
-python3 -m pip download --no-deps -r /tmp/requirements-no-hash.txt -d /tmp/pip-hashes --quiet
-python3 -m pip hash /tmp/pip-hashes/* | sed 's/^.*--hash=/--hash=/'
-rm -rf /tmp/pip-hashes
-rm /tmp/requirements-no-hash.txt
-```
-
-Add the pinned versions and hashes from the output to `scripts/requirements.txt` (direct dependencies only).

scripts/requirements.txt

@@ -5,16 +5,16 @@
 
 # Required by: scripts/ci/setup_release_automation
 # Cryptography library for GitHub secret encryption
-PyNaCl==1.6.2 --hash=sha256:c949ea47e4206af7c8f604b8278093b674f7c79ed0d4719cc836902bf4517465
+PyNaCl==1.6.2
 
 # Required by: scripts/ci/render-notes.py
 # YAML parser for release notes
-PyYAML==6.0.1 --hash=sha256:bfdf460b1736c775f2ba9f6a92bca30bc2095067b8a9d77876d1fad6cc3b4a43
+PyYAML==6.0.1
 
 # Required by: scripts/ci/render-notes.py
 # Template engine for rendering changelog files
-Jinja2==3.1.6 --hash=sha256:85ece4451f492d0c13c5dd7c13a64681a86afae63a5f347908daf103ce6d2f67
+Jinja2==3.1.6
 
 # Required by: scripts/ci/setup_release_automation, scripts/ci/render-notes.py
 # HTTP library for GitHub API interactions
-requests==2.32.4 --hash=sha256:27babd3cda2a6d50b30443204ee89830707d396671944c998b5975b031ac2b2c
+requests==2.32.4

scripts/test_python_scripts.sh

@@ -44,7 +44,7 @@ source "$VENV_DIR/bin/activate"
 
 # Install dependencies
 echo "Installing dependencies..."
-pip install --quiet --require-hashes --no-deps -r "$SCRIPT_DIR/requirements.txt"
+pip install --quiet -r "$SCRIPT_DIR/requirements.txt"
 echo "✓ Dependencies installed"
 echo ""