Bump git2 from 0.14.2 to 0.15.0 #2258
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
added
dependencies
|
@dependabot rebase |
dependabot
bot
force-pushed
the
dependabot/cargo/git2-0.15.0
branch
from
3f7a05b
to
0218f04
Compare
|
Seems like CI fails because 1.58 is too old. Do you know MSRV of git 0.15.0? So we can bump MSRV |
|
The MSRV policy of git2 is
Since git2 is a core (albeit optional) dependency of bat, it would not be unreasonable for bat to adopt the same MSRV policy. It would certainly make life of bat maintainers easier, if it would work. @sharkdp I think we should see what happens if we adopt the same MSRV policy. Are you OK with that? We can reverse the decision if we get a backlash. |
I don't, though due to my currently requirements I'm not using git2 directly in my application anymore, so this isn't really and issue for me rn, at least for the time being. |
|
Another option could be to run our MSRV CI pipeline without git support. |
PR for that: #2279 |
|
@dependabot rebase |
Bumps [git2](https://github.com/rust-lang/git2-rs) from 0.14.2 to 0.15.0. - [Release notes](https://github.com/rust-lang/git2-rs/releases) - [Commits](rust-lang/git2-rs@0.14.2...git2-curl-0.15.0) --- updated-dependencies: - dependency-name: git2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot/cargo/git2-0.15.0
branch
from
0218f04
to
e945b09
Compare
Would this affect anything with how the end user application or lib is utilized? |
|
Not that I see. Did you have anything in particular in mind? BTW, I was hoping that PR would fix CI. Not sure how to best fix the current failure. |
|
Not sure if I was thinking earlier @Enselic. Main issue for me atm is just getting this lib to the latest verison |
|
Hm, strange. This issue (rust-lang/git2-rs#838) seems to indicate that 1.60 is needed for some reason, even though I don't understand why the MSRV build even requires the git2 dependency after your PR, @Enselic. I'm a bit tired of this. Let's just move MSRV to 1.60 and then we will hopefully be good for a while. Even if git2s policy seems very lax, I don't think that they will intentionally break this all the time. At least not from the experience so far. |
|
Thanks for fixing, let's merge! I think we should keep git away from MSRV because:
I'm actually more and more thinking that instead of having a fixed MSRV we should have a fluid MSRV, like "3 stable releases back", and then update docs and CI jobs accordingly. So bumping MSRV to 1.60 is totally fine with me. |
Okay with me for |
|
I'm thinking we would write in READMEs "only last 3 stable releases are supported" or something like that. But let me propose that we go even further: Why don't we make it so that latest bat requires latest Rust? With rustup it is super easy to use latest stable. And for users that use pre-packaged versions of bat, it does not matter. Maybe we can try it, and if it turns out that it does not work out, we can always go back to "last 3 stable releases". We discussed maintenance burden before, and getting rid of MSRV would certainly ease maintenance burden, with for me unclear downsides. The only downside I can think of is that people that use the version that comes with their distro (which is typically quite old) can't compile bat master branch. But I find it hard to imagine that that group of users has a significant size. Besides, they would be likely to get problems even with a "only last 3 stable releases are supported"-policy. |
|
I completely forgot about bat-as-a-library 🤦♂️ |
|
I would propose another strategy:
|
|
Sounds great, let's try it 👍 |
Bumps git2 from 0.14.2 to 0.15.0.
Commits
4461b17Add binding forgit_message_trailers(#749)4348694Merge pull request #756 from saimen/fix-diffstat-doc-typoDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)