why is the compat section of this package so restrictive?
#58
Comments
|
I added dependency versions in the The versions in the Do others have any thoughts? |
I've just tried building it with the |
I don't see why they wouldn't unless there's an underlying issue with a dependency. Before the changes in #56 I didn't run into any issues with testing.
It seems that |
|
The compat section in this file is following best practices and is not overly restrictive. |
|
I was talking to @mattBrzezinski when he made the PR to add Compat versions. He did the good thing. If there is a particular package compat restriction you would like to see relaxed. The overall practice here is the correct one. |
|
I'm not accusing anyone of anything wrong here, but for a package this simple to cause so many downgrades and nobody knows exactly why does not bode well at all for a future in which all packages have these restrictions. When I have time I will dig through this and figure out what the problem is. |
Could you post the packages and their versions in your environment? I can help try and root cause the issue in some free time.
It's definitely possible to end up in this state, and I can see the concern. I don't think this is the package to have this discussion in, but I'd raise your concerns with it in either the Julia Slack / Discourse / Git Issue page(s). |
|
Ok, I've looked into this a bit more. It turns out that the most egregious problems were not caused by this package (I still don't know where they are coming from), but one thing from this package that is likely causing issues is the bound on MbedTLS. This package had an 0.7 release way back in June, is there some reason it is capped to 0.6 in AWSS3.jl? |
https://github.com/JuliaCloud/AWSCore.jl/blob/v0.6.4/Project.toml#L26 |
|
AFAICT this package doesn't actually directly load MbedTLS.jl ? MbedTLS.jl releases tend to need to be synconized against Julia releases for reasons I don't understand entirely,b but that i think boil down to Julia also including the MbedTLS shared library and that gets mad if you link against common versions. So I bet that once can be relaxed a bunch? |
MbedTLS is being used here:
|
|
In-case anyone wants to see a continuation of this discussion Thanks @ExpandingMan |
|
I'll create a CR to bump the version here as well. However it should be noted that if you're using |
|
Why does this load MbedTLS in the middle of the file? Line 742 in d8697e4 :-( |
|
I'll close this issue as I'm pretty certain there isn't anything actionable left here. As of AWSCore v0.6.5 there is now support for MbedTLS v0.7 (requires Julia 1.2). That change should take care of the downgrades that were observed. |
The
compatsection of theProject.tomlfor this package is very restrictive, and is wreaking havoc on my environment. Are there specific reasons for all these restrictions (the reason for my skepticism is that this package is largely a simple HTTP wrapper)? If not, I'd beg that we can remove them. Unnecessary compat restrictions are really harmful as they cause packages to be downgraded unnecessarily, if more packages were so restrictive, there'd be a high risk of getting unsatisfiable requirements.The text was updated successfully, but these errors were encountered: