You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@fineract.apache.org by vo...@apache.org on 2020/05/19 20:52:02 UTC

[fineract] branch vorburger-README-dependencies created (now a0c5703)

This is an automated email from the ASF dual-hosted git repository.

vorburger pushed a change to branch vorburger-README-dependencies
in repository https://gitbox.apache.org/repos/asf/fineract.git.


      at a0c5703  add new Dependency Upgrades section to README

This branch includes the following new commits:

     new a0c5703  add new Dependency Upgrades section to README

The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.

[fineract] 01/01: add new Dependency Upgrades section to README

Posted by vo...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

vorburger pushed a commit to branch vorburger-README-dependencies
in repository https://gitbox.apache.org/repos/asf/fineract.git

commit a0c57039385b4eb15f54992bf8fb5b382b689d9c
Author: Michael Vorburger ⛑️ <mi...@vorburger.ch>
AuthorDate: Tue May 19 22:51:55 2020 +0200

    add new Dependency Upgrades section to README
---
 README.md | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/README.md b/README.md
index bdffaf0..1c16a23 100644
--- a/README.md
+++ b/README.md
@@ -291,6 +291,15 @@ them in different commits. This helps review to review your code faster.
 
 We have an automated Bot which marks pull requests as "stale" after a while, and ultimately automatically closes them.
 
+Dependency Upgrades
+-------------------
+
+This project uses a number of 3rd-party libraries, and this section provides some guidance for their updates. We have set-up [Renovate's bot](https://renovate.whitesourcesoftware.com) to automatically raise Pull Requests for our review when new dependencies are available [FINERACT-962](https://issues.apache.org/jira/browse/FINERACT-962).
+
+Upgrades sometimes require package name changes.  Changed code should ideally have test coverage.
+
+Our `ClasspathHellDuplicatesCheckRuleTest` detects classes that appear in more than 1 JAR.  If a version bump in [`build.gradle`](https://github.com/search?q=repo%3Aapache%2Ffineract+filename%3Abuild.gradle&type=Code&ref=advsearch&l=&l=) causes changes in transitives dependencies, then you may have to add related `exclude` to our [`dependencies.gradle`](https://github.com/apache/fineract/search?q=dependencies.gradle).  Running `./gradlew dependencies` helps to understand what is required.
+
 
 Releasing
 ---------