You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cordova.apache.org by "Steve Gill (JIRA)" <ji...@apache.org> on 2015/12/02 02:14:11 UTC
[jira] [Commented] (CB-10110) Audit and remove all ">="
dependencies and pins
[ https://issues.apache.org/jira/browse/CB-10110?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15035042#comment-15035042 ]
Steve Gill commented on CB-10110:
---------------------------------
I would think we replace it with either `~` which grabs patch versions or `^` which grabs minor and patch versions.
For pinned plugins and platforms, we use ~ to only grab updated patch releases.
For plugin dependencies, I switched >= to ^ so we stay away from grabbing major updates.
It would be nice to update our deps to get away from 0.x versions, but the reality is that some popular modules decided to start at 0 and haven't been bumped up yet. Pinning exact versions seems like a smart choice.
> Audit and remove all ">=" dependencies and pins
> -----------------------------------------------
>
> Key: CB-10110
> URL: https://issues.apache.org/jira/browse/CB-10110
> Project: Apache Cordova
> Issue Type: Task
> Reporter: Dmitry Blotsky
> Original Estimate: 48h
> Remaining Estimate: 48h
>
> This applies to _all_ components. We should never automatically update to major versions of dependencies or pins; it should be a deliberate manual process.
> They should be replaced with carets ({{`}}) where the version is greater than 1.0.0, and with strict equality ({{==}}) where the version is less than 1.0.0.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@cordova.apache.org
For additional commands, e-mail: issues-help@cordova.apache.org