You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
One of the biggest problems with dependency management is where to find trusted sources of libraries. This tool helps integrate the library into my project, but it does not seem to have a way of discovering what is available? Something like https://bintray.com/bintray/jcenter or https://cocoapods.org/
The text was updated successfully, but these errors were encountered:
If this list grows and becomes unwieldy then I'll make a website like cocoapods.org. For now, this lets me check every package I know about any time I make a change to CDep.
CDep is distributed in nature and there could be packages I don't know about. Packages may also be hosted on private servers.
If you don't find something in the list, let me know and I can probably help get a package made (mostly anything but *SSL packages).
Trust is a different issue. Since CDep is distributed, you have to trust the source that is providing the package rather than the package manager as a whole. You can tell where the package is coming from by looking at it's coordinate. So for example,
com.github.jomof:sqlite:3.16.2-rev51
This tells you the identity of the package owner (me on github). You can inspect the package sources itself by going to the corresponding github page:
One of the biggest problems with dependency management is where to find trusted sources of libraries. This tool helps integrate the library into my project, but it does not seem to have a way of discovering what is available? Something like https://bintray.com/bintray/jcenter or https://cocoapods.org/
The text was updated successfully, but these errors were encountered: