-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi there,
| Heh, so you are willing to trade "build reproducibility" (for all
| projects linked to central repo) for "care about the community"? o.O
|
| Hrm, please put that on a vote before you do it!
|
| IF you are talking about putting up "dummy"
I still don't see what's wrong with that. I know it can break your
build, but people don't think those [WARN] messages in the cmdline and
the fact that maven is hitting the internet trying to download the
missing pom everytime, are the sign of a problem ???
On Jan 28, 2008 11:48 AM, Daniel Kulp <[
On Monday 28 January 2008, Jason van Zyl wrote:
> On 28-Jan-08, at 11:30 AM, Daniel Kulp wrote:
> > What's worse is if someone reports a missing pom, they then go and
> > add a
> > FULL pom with deps which then gets synced to central. That could
> > cause
> > issues as we all know.
>
> Are you ser
There's still around 5 releases every month only at apache that go to
the m1 repo (most of them with poms).
I'd rather have the official jars being deployed without poms than do
it manually, and accept anybody's upload request for let's say Tomcat,
with all the problems that it could cause.
.
On
On 28-Jan-08, at 11:30 AM, Daniel Kulp wrote:
On Monday 28 January 2008, Jason van Zyl wrote:
How did anything without a POM get into the m2 repository?
From the m1 conversion (which we should turn off now)?
From syncing partners?
Definitely from syncing partners is a huge one. I know th
On 28-Jan-08, at 11:33 AM, Carlos Sanchez wrote:
from m1 syncing partners that didnt have poms
We should just shut off the m1 conversion. Happy to support the m1
repository mapping, but that process is broken not to mention it pegs
the machine when it runs.
On Jan 28, 2008 11:25 AM, Ja
given these premises
- pom is not in the repo
- project is not willing to put it
then authoritative data can come from project users, after all this is
a community.
As i said before my opinion is that we can still put poms in projects
that didnt have them
On Jan 28, 2008 11:27 AM, Tamás Cserven
from m1 syncing partners that didnt have poms
On Jan 28, 2008 11:25 AM, Jason van Zyl <[EMAIL PROTECTED]> wrote:
> How did anything without a POM get into the m2 repository?
>
> From the m1 conversion (which we should turn off now)?
>
> From syncing partners?
>
>
> On 28-Jan-08, at 11:10 AM, Car
On Monday 28 January 2008, Jason van Zyl wrote:
> How did anything without a POM get into the m2 repository?
>
> From the m1 conversion (which we should turn off now)?
>
> From syncing partners?
Definitely from syncing partners is a huge one. I know the ws commons
group at apache is REALLY ba
Heh, so you are willing to trade "build reproducibility" (for all
projects linked to central repo) for "care about the community"? o.O
Hrm, please put that on a vote before you do it!
IF you are talking about putting up "dummy" (depsless, only GAV) POMs:
IMHO, by putting "dummy" poms (without d
How did anything without a POM get into the m2 repository?
From the m1 conversion (which we should turn off now)?
From syncing partners?
On 28-Jan-08, at 11:10 AM, Carlos Sanchez wrote:
i'm talking about things that are already there without pom
On Jan 28, 2008 11:07 AM, Jason van Zyl <[EMAI
i'm talking about things that are already there without pom
On Jan 28, 2008 11:07 AM, Jason van Zyl <[EMAIL PROTECTED]> wrote:
> If there is no POM you should just reject it and send it back. If we
> automated this, which we will, it would fail. You can't know as a
> third party what is correct.
>
If there is no POM you should just reject it and send it back. If we
automated this, which we will, it would fail. You can't know as a
third party what is correct.
On 28-Jan-08, at 10:51 AM, Carlos Sanchez wrote:
if there's no pom uploaded then you can take 5 minutes of your time
and provid
if there's no pom uploaded then you can take 5 minutes of your time
and provide one. I try to do it for all the ones I use. It can be
because you care about the community or because you are selfish and
want your project to be reproducible ;) either way providing a pom
doesnt take that long
On Jan
Daniel,
i think we talk about two things here:
- to fix/modify retroactively already deployed poms and/or repo
content - and i believe we both agree it is a disaster to do so.
- to prevent failed download request every time the project is built.
I was talking about the second problem, with corp
I think it's simple and is what we've been doing. Once it hits the central
repo, it's done...no changes to anything period.
The advanced repo manager thing is a workaround for sure, but in an enterprise
a very valid and frequently used one. It obviously doesn't help OOS projects,
but changing
While I completely agree about the poms needing to be "carved in stone",
I really DON'T agree with the requirement to "use advanced repo managers
to solve problems like this".
That's perfectly fine for enterprise level application development where
all the developers are in the same locati
Hi,
I'm with Jason here: once something is released, it should be carved
into stone. The maven remote repository (every remote one, not just
the central!) should only "move forward" in time. We cannot allow
"backward" modification of artifacts since it may have unforeseeable
consequences! Not to m
|> -Original Message-
|> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of Carlos
|> Sanchez
|> Sent: Tuesday, 16 October 2007 2:01 AM
|> To: Maven Developers List
|> Subject: [***POSSIBLE SPAM***] - Re: Fix missing POM files -
Email has
|> differe
TED] [mailto:[EMAIL PROTECTED] On Behalf Of Carlos
| |> Sanchez
| |> Sent: Tuesday, 16 October 2007 2:01 AM
| |> To: Maven Developers List
| |> Subject: [***POSSIBLE SPAM***] - Re: Fix missing POM files - Email has
| |> different SMTP TO: and MIME TO: fields in the email addresses
|
generate and upload
> |> such POMs for all artifacts in central with a missing POM.
> |>
> |> William
> |>
> |>
> |> -Original Message-
> |> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Carlos
> |> Sanchez
> |> Sent:
Tuesday, 16 October 2007 2:01 AM
|> To: Maven Developers List
|> Subject: [***POSSIBLE SPAM***] - Re: Fix missing POM files - Email has
|> different SMTP TO: and MIME TO: fields in the email addresses
|>
|> sorry, but that's not the case currently. If it has no metadata it can
|>
To: Maven Developers List
Subject: [***POSSIBLE SPAM***] - Re: Fix missing POM files - Email has
different SMTP TO: and MIME TO: fields in the email addresses
i don't agree, the point of not having a pom there is to be able to add
one later with the right info. If you work against something wi
> Sent: Tuesday, 16 October 2007 2:01 AM
> To: Maven Developers List
> Subject: [***POSSIBLE SPAM***] - Re: Fix missing POM files - Email has
> different SMTP TO: and MIME TO: fields in the email addresses
>
> sorry, but that's not the case currently. If it has no metadata it can
h POMs for all artifacts in central with a missing POM.
William
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Carlos
Sanchez
Sent: Tuesday, 16 October 2007 2:01 AM
To: Maven Developers List
Subject: [***POSSIBLE SPAM***] - Re: Fix missing POM files -
sorry, but that's not the case currently. If it has no metadata it can
be added, that's why you get warnings when the metadata is missing.
On 10/15/07, nicolas de loof <[EMAIL PROTECTED]> wrote:
> I fully agree about collaborating and submitting more artifacts to the repo
> with good meta-datas. T
I fully agree about collaborating and submitting more artifacts to the repo
with good meta-datas. The only issue I can see is about reproductible builds
if those meta-datas change.
The established rule NOT to change meta-datas after publication applies IMHO
also to artifacts without meta-datas. An
On 10/15/07, nicolas de loof <[EMAIL PROTECTED]> wrote:
> I'm not the guy who uploaded castor 1.0 on the maven repo, and I'm also not
> the guy who used it in the project. I came later and have to maintain the
> project now.
that's collaboration ;) if you want to use something that uses castor
and
I'm not the guy who uploaded castor 1.0 on the maven repo, and I'm also not
the guy who used it in the project. I came later and have to maintain the
project now.
Do you think I should contribute an empty POM just to ensure no-one can
latter contribute one with some (maybe) unexpected dependencies
On 10/11/07, nicolas de loof <[EMAIL PROTECTED]> wrote:
> Warning : This could break existing projects !
>
> My project has a dependency on castor-1.0. This one has no POM.
> If you povide one, rebuilding my app will introduce new transitive
> dependencies that were not expected, and my build will
On 10/11/07, Jochen Wiedmann <[EMAIL PROTECTED]> wrote:
> On 10/11/07, nicolas de loof <[EMAIL PROTECTED]> wrote:
> > Warning : This could break existing projects !
> >
> > My project has a dependency on castor-1.0. This one has no POM.
> > If you povide one, rebuilding my app will introduce new tr
On 10/11/07, nicolas de loof <[EMAIL PROTECTED]> wrote:
> Warning : This could break existing projects !
>
> My project has a dependency on castor-1.0. This one has no POM.
> If you povide one, rebuilding my app will introduce new transitive
> dependencies that were not expected, and my build will
Warning : This could break existing projects !
My project has a dependency on castor-1.0. This one has no POM.
If you povide one, rebuilding my app will introduce new transitive
dependencies that were not expected, and my build will become
non-reproductible.
Only new release of an artifact can co
On 10/11/07, Carlos Sanchez <[EMAIL PROTECTED]> wrote:
> http://maven.apache.org/guides/mini/guide-maven-evangelism.html
Quoting from that text:
... unless you provide a pom for it ...
I am ready to do that, at least in the cases that harm me. But how?
Through the standard upload procedure?
Jo
http://maven.apache.org/guides/mini/guide-maven-evangelism.html
On 10/4/07, Jochen Wiedmann <[EMAIL PROTECTED]> wrote:
> Hi,
>
> repo1.maven.org contains a number of jar files without POM. Examples
> include woodstox/wstx-asl/3.0.2/, or castor/castor/1.0/. As these are
> quite a pain in the develo
re's rules, understand? So that you think before
> you break 'em.
>
> -- (Terry Pratchett, Thief of Time)
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAI
Hi,
repo1.maven.org contains a number of jar files without POM. Examples
include woodstox/wstx-asl/3.0.2/, or castor/castor/1.0/. As these are
quite a pain in the development by causing unnecessary and failed
download requests every time, I'd like to fix this, at least for those
where I note it.
37 matches
Mail list logo
