--
You received this message because you are subscribed to the Google Groups "Go Package Management" group.
To unsubscribe from this group and stop receiving emails from it, send an email to go-package-manag...@googlegroups.com.
To post to this group, send email to go-package...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Great! Is this settled then? SemVer with or without vendoring can be supported by a tool.
If gb and glide does this then maybe there can be an easier transition into go for people very used to, for better or worse, working with versions.
Personally I really like vendoring but proper versions would be a great help. Things like querying for possible updates and selecting them possibly even interactively would be really nice.
--
On Fri, Jul 29, 2016 at 12:54 PM, Nathan Youngman <he...@nathany.com> wrote:
>
> Thanks. I musta missed that (repo).
>
> Another thing that could be interesting to capture in a lock file is a
> checksum of the vendored files -- similar to the git sha (or other vcs) --
> but after any pruning done by the tool.
>
> The idea being that the update process could warn if those vendored files
> were "tampered" with (patched) before overwriting them.
why ? They're being checked into source control, can't that track
changes for you?