New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Exact dependencies here make the SDK less useful #12
Comments
This is a really good point. Do you have a suggestion for a good way to do this? I'm happy to publish another crate without locking dependencies, but it would be good for that to live elsewhere -- maybe a dedicated branch? |
I would suggest just making a |
I think I'm okay with creating |
How would it break the verifiable build? |
I'm concerned about Cargo pulling in updated versions of packages during the build. I think the Cargo.lock might help with this, but to avoid having deal with that issue I've created |
It was published from the |
Yeah that was what I was referring to by:
|
Good to close the issue? I'm updating all of the other packages to relax the dependency constraints |
I still think it would be better to make |
phoenix-v1 is a program so it's good that it has exact dependencies, however phoenix-v1 is also used as a library in phoenix-sdk-core so anyone using phoenix-sdk-core gets locked into a specific version of stuff like spl-token.
This probably requires a separate library crate for stuff that's common between the SDK and the program?
The text was updated successfully, but these errors were encountered: