Skip to content

Enforce explicit plugin versions#259

Merged
georgewfraser merged 1 commit intogeorgewfraser:masterfrom
Tillerino:enforce-explicit-plugin-versions
Jul 7, 2023
Merged

Enforce explicit plugin versions#259
georgewfraser merged 1 commit intogeorgewfraser:masterfrom
Tillerino:enforce-explicit-plugin-versions

Conversation

@Tillerino
Copy link
Copy Markdown
Contributor

@Tillerino Tillerino commented Jun 20, 2023

Hi!

I recently bumped the Maven version in Nixpgks (NixOS/nixpkgs#238746) and ran into some small but annoying manual effort w.r.t. the this package. The issue is that this package is packaged using the double invocation method which unfortunately breaks if not all maven plugin versions are set explicitly.

We're extending the documentation to prevent this (NixOS/nixpkgs#238774), but I'm reaching out to fix the packages which have already been packaged. In this PR, we explicitly set the versions of a few plugins which hadn't had their versions set explicitly before and add a check with the enforcer plugin to make sure this won't accidentally break in the future.

Note that the exact versions of the plugins that you're using are not important to us and please do change them as you see fit. We only ask that you explicitly set the versions of all plugins so that downstream upgrades can run automatically.

Thank you.

(This was copy-pasta as I have a few repositories to go through. Please just ask if anything is unclear.)

@Tillerino Tillerino mentioned this pull request Jun 20, 2023
Merged
12 tasks
@georgewfraser
Copy link
Copy Markdown
Owner

georgewfraser commented Jul 6, 2023

I'm not really following, can you clarify how this is relevant to my project in particular?

@Tillerino
Copy link
Copy Markdown
Contributor Author

Tillerino commented Jul 6, 2023

I can try :)

Somebody packaged java-language-server for Nix. In Nix, everything is built from source and everything is supposed to be perfectly reproducible. Inputs and outputs of all steps are hashed to make sure that nothing changes on a rebuild and to allow caching. When working with Maven, the Maven dependencies are treated as additional sources which are derived from the original source code. This includes Maven plugins.

So when the versions of the used Maven plugins are not completely determined by the package (e.g. java-language-server) and we upgrade the Maven version in Nix, the "source" (the Maven dependencies part) of the package changes which adds manual labor for a process which would otherwise be completely automated. This is what I did in the PR linked above.

So setting the versions of all Maven plugins helps us out with package Maintenance :)

(And it's also best practice according to the first article that turned up when I googled "Maven best practices", but I'd rather you do it as a favor to us 😄)

@georgewfraser georgewfraser merged commit ca503f1 into georgewfraser:master Jul 7, 2023
@Tillerino Tillerino deleted the enforce-explicit-plugin-versions branch July 8, 2023 18:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Tillerino @georgewfraser