You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi. I have implemented a tool to detect library version inconsistencies. Your project have 9 inconsistent libraries and 3 false consistent libraries.
Take com.google.guava:guava for example, this library is declared as version 19.0 in spring-boot-springfox, 20.0 in spring-boot-activiti and etc... Such version inconsistencies may cause unnecessary maintenance effort in the long run. For example, if two modules become inter-dependent, library version conflict may happen. It has already become a common issue and hinders development progress. Thus a version harmonization is necessary.
Provided we applied a version harmonization, I calculated the cost it may have to harmonize to all upper versions including an up-to-date one. The cost refers to POM config changes and API invocation changes. Take com.google.guava:guava for example, if we harmonize all the library versions into 28.2-android. The concern is, how much should the project code adapt to the newer library version. We list an effort table to quantify the harmonization cost.
The effort table is listed below. It shows the overall harmonization effort by modules. The columns represents the number of library APIs and API calls(NA,NAC), deleted APIs and API calls(NDA,NDAC) as well as modified API and API calls(NMA,NMAC). Modified APIs refers to those APIs whose call graph is not the same as previous version. Take the first row for example, if upgrading the library into version 28.2-android. Given that 2 APIs is used in module spring-boot-shiro-redis, 0 of them is deleted in a recommended version(which will throw a NoMethodFoundError unless re-compiling the project), 2 of them is regarded as modified which could break the former API contract.
Index
Module
NA(NAC)
NDA(NDAC)
NMA(NMAC)
1
spring-boot-shiro-redis
2(3)
0(0)
2(3)
2
spring-boot-shiro
1(2)
0(0)
1(2)
3
spring-boot-activiti
1(2)
0(0)
1(2)
4
..
..
..
..
Also we provided another table to show the potential files that may be affected due to library API change, which could help to spot the concerned API usage and rerun the test cases. The table is listed below.
As for false consistency, take com.alibaba fastjson jar for example. The library is declared in version 1.2.54 in all modules. However they are declared differently. As components are developed in parallel, if one single library version is updated, which could become inconsistent as mentioned above, may cause above-mentioned inconsistency issues
If you are interested, you can have a more complete and detailed report in the attached PDF file. leelance spring-boot-all.pdf
Fudan SELab
The text was updated successfully, but these errors were encountered:
Hi. I have implemented a tool to detect library version inconsistencies. Your project have 9 inconsistent libraries and 3 false consistent libraries.
Take com.google.guava:guava for example, this library is declared as version 19.0 in spring-boot-springfox, 20.0 in spring-boot-activiti and etc... Such version inconsistencies may cause unnecessary maintenance effort in the long run. For example, if two modules become inter-dependent, library version conflict may happen. It has already become a common issue and hinders development progress. Thus a version harmonization is necessary.
Provided we applied a version harmonization, I calculated the cost it may have to harmonize to all upper versions including an up-to-date one. The cost refers to POM config changes and API invocation changes. Take com.google.guava:guava for example, if we harmonize all the library versions into 28.2-android. The concern is, how much should the project code adapt to the newer library version. We list an effort table to quantify the harmonization cost.
The effort table is listed below. It shows the overall harmonization effort by modules. The columns represents the number of library APIs and API calls(NA,NAC), deleted APIs and API calls(NDA,NDAC) as well as modified API and API calls(NMA,NMAC). Modified APIs refers to those APIs whose call graph is not the same as previous version. Take the first row for example, if upgrading the library into version 28.2-android. Given that 2 APIs is used in module spring-boot-shiro-redis, 0 of them is deleted in a recommended version(which will throw a NoMethodFoundError unless re-compiling the project), 2 of them is regarded as modified which could break the former API contract.
Also we provided another table to show the potential files that may be affected due to library API change, which could help to spot the concerned API usage and rerun the test cases. The table is listed below.
As for false consistency, take com.alibaba fastjson jar for example. The library is declared in version 1.2.54 in all modules. However they are declared differently. As components are developed in parallel, if one single library version is updated, which could become inconsistent as mentioned above, may cause above-mentioned inconsistency issues
If you are interested, you can have a more complete and detailed report in the attached PDF file.
leelance spring-boot-all.pdf
Fudan SELab
The text was updated successfully, but these errors were encountered: