Hi
On 08/24/2016 11:08 PM, Matt Farina wrote:
> Ever since I used David <
https://david-dm.org/>, for nodejs projects
> I've worked on, and the Drupal Update manager
> <
https://www.drupal.org/documentation/modules/update>, for the popular
> CMS, I've had a healthy respect and interest in tracking the state of
> the dependencies in use. If there are security releases, bug fixes, and
> so forth.
>
> I'm not aware of much in the Go space but I believe this does play into
> any conversations on dependency management. Management it's just
> fetching but lifecycle management.
>
> Playing around with the idea I wrote Glide Report
> <
https://github.com/Masterminds/glide-report>. It's not like the others,
> partly because the data isn't available and partly because this is just
> a quick initial commit.
>
> If you want to see what it generates see the Kubernetes
> <
https://gist.github.com/mattfarina/fcba945cfd9efc49c284c202d7dfab92>
> and runC
> <
https://gist.github.com/mattfarina/d9e4bfed106af3ea8cf7f0e80a34d196>
> reports.
That's a really interesting tool! Sad that it's only for glide and not
for other dependency managers.
> My 2 cents, when we consider dependency management it's worth keeping
> things like this in mind. Not to necessarily go build but that should be
> part of the ecosystem.
>
> Any thoughts? Any examples from other languages?
While I did Ruby development I used Gemnasium <
https://gemnasium.com> to
track outdated dependencies. Another way have been the command `bundle
outdated` <
http://bundler.io/v1.1/bundle_outdated.html>.
Best,
Thomas Boerger
--
Thomas Boerger <
tboe...@suse.de>
Docker Developer
SUSE Linux GmbH, Maxfeldstr. 5, D-90409 Nürnberg
Tel: +49-911-74053-0; Fax:
+49-911-7417755;
https://www.suse.com/
SUSE Linux GmbH, GF: Felix Imendörffer, Jane Smithard, Graham Norton,
HRB 21284 (AG Nürnberg)