New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feat: conservative plugin (dependency) updates by default #13794
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This looks like a promising resolution to #13789, and although this PR adds a "feature" to allow direct control of the underlying bundler, it effectively does so in addition to solving the bug of surprises in unrelated dependencies being upgraded.
I am +1 to also back-porting to 7.17
.
@kares it may be worth determining if this is effectively the same as the existing |
thanks - have seen that but did not look to close enough as it wasn't a Bundler flag. the end result here seems to be the same for this use-case, but there's a difference what we do underneath:
another difference is that it's an install flag only and an explicit also wonder what happens if a dependency update is needed on install that I guess the plugin-manager with --preserve either fails or does a (non-conservative) update by default anyway. last, why wasn't the wasn't planning to dive deep but maybe a path forward would be to deprecate the |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
very nice change, LGTM
) (cherry picked from commit 67fd99b)
) (cherry picked from commit 67fd99b)
bin/logstash-plugin install logstash-input-s3-sns-sqs
New behavior (
--conservative
default) :Previous behavior (
--no-conservative
) :Release notes
The
bin/logstash-plugin
utility will, by default, behave more conservatively when updating plugin dependencies.What does this PR do?
Introduces
--conservative
(default) /--no-conservative
flag for plugin install and update.Why is it important/What is the impact to the user?
The user will end up less surprised when running
bin/logstash-plugin update
orinstall
(when dependencies such as a mixin needs an update to install the plugin).Checklist
How to test this PR locally
Run
bin/logstash-plugin install logstash-input-s3-sns-sqs
and compare the Gemfile.lock changes.Related issues
Pretty much avoids surprise updates of a dependency such as #13777