Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

maint: Permit updates of indirect dependencies #184

Merged
merged 4 commits into from
Mar 27, 2024
Merged

maint: Permit updates of indirect dependencies #184

merged 4 commits into from
Mar 27, 2024

Conversation

BatmanAoD
Copy link
Contributor

The version requirements should permit consumers to use SemVer-compatible updates of the upstream opentelemetry packages, rather than locking specific versions.

Which problem is this PR solving?

The opentelemetry-sdk version requirement is overly strict. This is preventing me from using a different dependency that specifies openetelemetry-sdk = "^1.23.0".

Short description of the changes

Use ^ to specify that SemVer-compatible updates to opentelemetry-sdk packages are permitted.

How to verify that this has the expected result

Import this package together with opentelemetry-sdk = "1.23.0".

@BatmanAoD BatmanAoD requested a review from a team as a code owner March 20, 2024 19:56
@BatmanAoD
Permit updates of indirect dependencies
78833d7 
The version requirements should permit consumers to use SemVer-compatible updates of the upstream opentelemetry packages, rather than locking specific versions.
MikeGoldsmith
MikeGoldsmith approved these changes Mar 27, 2024
View reviewed changes
Copy link
Contributor

@MikeGoldsmith MikeGoldsmith left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi @BatmanAoD - thank you for the PR.

Looking at the poetry dependency specification docs, I think being less restrictive makes sense here. Updating to ^1.22.0 effectively limits the dependency versions to >=1.22.0 and <2.0.0. We need to be more careful with major updates so I think works well.

I made one small change which was to re-run poetry lock --no-update with a newer version of poetry as it doesn't add the category field in dependencies anymore.

@MikeGoldsmith MikeGoldsmith added the type: maintenance The necessary chores to keep the dust off. label Mar 27, 2024
@MikeGoldsmith MikeGoldsmith self-assigned this Mar 27, 2024
@MikeGoldsmith MikeGoldsmith added the version: bump patch A PR with release-worthy changes and is backwards-compatible. label Mar 27, 2024
JamieDanielson
JamieDanielson reviewed Mar 27, 2024
View reviewed changes
pyproject.toml Outdated Show resolved Hide resolved
@MikeGoldsmith MikeGoldsmith changed the title Permit updates of indirect dependencies maint: Permit updates of indirect dependencies Mar 27, 2024
@MikeGoldsmith MikeGoldsmith merged commit 02cc4bf into honeycombio:main Mar 27, 2024
3 checks passed
@BatmanAoD BatmanAoD deleted the patch-1 branch March 27, 2024 15:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@MikeGoldsmith MikeGoldsmith MikeGoldsmith approved these changes

@JamieDanielson JamieDanielson JamieDanielson left review comments

Assignees

@MikeGoldsmith MikeGoldsmith

Labels
type: maintenance The necessary chores to keep the dust off. version: bump patch A PR with release-worthy changes and is backwards-compatible.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@BatmanAoD @MikeGoldsmith @JamieDanielson