[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#891136: ITP: tools-deps-alpha-clojure -- functional API for dependency management and classpath creation

Okay, latest version is now 0.8.677. Let's reevaluate what's required for packaging.

`lein deps :tree` now says:

 [org.clojure/tools.deps.alpha "0.8.677"]

   ;; I'm going to ignore these for now
   [com.cognitect.aws/api "0.8.408"]
     [com.cognitect/http-client "0.1.101"]
       [org.eclipse.jetty/jetty-client "9.4.15.v20190215"]
         [org.eclipse.jetty/jetty-io "9.4.15.v20190215"]
       [org.eclipse.jetty/jetty-http "9.4.15.v20190215"]
       [org.eclipse.jetty/jetty-util "9.4.15.v20190215"]
     [commons-codec "1.13"]
     [org.clojure/core.async "0.5.527"]
       [org.clojure/tools.analyzer.jvm "0.7.2"]
         [org.clojure/core.memoize "0.5.9"]
           [org.clojure/core.cache "0.6.5"]
             [org.clojure/data.priority-map "0.0.7"]
         [org.clojure/tools.analyzer "0.6.9"]
         [org.clojure/tools.reader "1.0.0-beta4"]
         [org.ow2.asm/asm-all "4.2"]
     [org.clojure/data.json "0.2.7"]
     [org.clojure/tools.logging "0.5.0"]
   [com.cognitect.aws/endpoints "1.1.11.705"]
   [com.cognitect.aws/s3 "784.2.593.0"]

   ;; inside libatinject-jsr330-api-java
   [javax.inject "1"]

   ;; libmaven-resolver-java == 1.4.1 in sid
   [org.apache.maven.resolver/maven-resolver-api "1.4.1"]
   [org.apache.maven.resolver/maven-resolver-connector-basic "1.4.1"]
   [org.apache.maven.resolver/maven-resolver-impl "1.4.1"]
     [org.slf4j/slf4j-api "1.7.25"]
   [org.apache.maven.resolver/maven-resolver-spi "1.4.1"]
   [org.apache.maven.resolver/maven-resolver-transport-file "1.4.1"]
   [org.apache.maven.resolver/maven-resolver-transport-http "1.4.1"]
     [org.apache.httpcomponents/httpclient "4.5.6" :exclusions [[commons-logging]]]
     [org.apache.httpcomponents/httpcore "4.4.10"]
     [org.slf4j/jcl-over-slf4j "1.7.25" :scope "runtime"]
   [org.apache.maven.resolver/maven-resolver-util "1.4.1"]

   ;; libmaven3-core-java == 3.6.3 in sid
   [org.apache.maven/maven-core "3.6.3"]
     [com.google.inject/guice "4.2.1" :classifier "no_aop"]
       [aopalliance "1.0"]
       [com.google.guava/guava "25.1-android"]
         [com.google.code.findbugs/jsr305 "3.0.2"]
         [com.google.errorprone/error_prone_annotations "2.1.3"]
         [com.google.j2objc/j2objc-annotations "1.1"]
         [org.checkerframework/checker-compat-qual "2.0.0"]
         [org.codehaus.mojo/animal-sniffer-annotations "1.14"]
     [org.apache.commons/commons-lang3 "3.8.1"]
     [org.apache.maven.shared/maven-shared-utils "3.2.1"]
       [commons-io "2.5"]
     [org.apache.maven/maven-artifact "3.6.3"]
     [org.apache.maven/maven-builder-support "3.6.3"]
     [org.apache.maven/maven-plugin-api "3.6.3"]
     [org.apache.maven/maven-settings-builder "3.6.3"]
       [org.sonatype.plexus/plexus-sec-dispatcher "1.4"]
         [org.sonatype.plexus/plexus-cipher "1.4"]
     [org.apache.maven/maven-settings "3.6.3"]
     [org.codehaus.plexus/plexus-classworlds "2.6.0"]
     [org.codehaus.plexus/plexus-component-annotations "2.1.0" :exclusions [[junit]]]
     [org.eclipse.sisu/org.eclipse.sisu.inject "0.3.4"]
     [org.eclipse.sisu/org.eclipse.sisu.plexus "0.3.4"]
       [javax.enterprise/cdi-api "1.0" :exclusions [[javax.el/el-api] [org.jboss.ejb3/jboss-ejb3-api] [org.jboss.interceptor/jboss-interceptor-api]]]
         [javax.annotation/jsr250-api "1.0"]

   ;; in libmaven3-core-java == 3.6.3 in sid
   [org.apache.maven/maven-resolver-provider "3.6.3"]
     [org.apache.maven/maven-model-builder "3.6.3"]
       [org.codehaus.plexus/plexus-interpolation "1.25"]
     [org.apache.maven/maven-model "3.6.3"]
     [org.apache.maven/maven-repository-metadata "3.6.3"]
     [org.codehaus.plexus/plexus-utils "3.2.1"]

   ;; in libdata-xml-clojure > 0.0.8 in sid
   ;; there's an incompatibility with leiningen issue in upgrading
   [org.clojure/data.xml "0.2.0-alpha6"]
     [org.clojure/data.codec "0.1.0"]

   ;; in libtools-cli-clojure > 0.3.5 in sid
   [org.clojure/tools.cli "0.4.2"]

   ;; NOT in Debian, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=905543
   [org.clojure/tools.gitlibs "0.2.64"]
     [com.jcraft/jsch.agentproxy.connector-factory "0.0.9"]
       [com.jcraft/jsch.agentproxy.core "0.0.9"]
       [com.jcraft/jsch.agentproxy.pageant "0.0.9"]
       [com.jcraft/jsch.agentproxy.sshagent "0.0.9"]
       [com.jcraft/jsch.agentproxy.usocket-jna "0.0.9"]
         [net.java.dev.jna/jna-platform "4.1.0"]
         [net.java.dev.jna/jna "4.1.0"]
       [com.jcraft/jsch.agentproxy.usocket-nc "0.0.9"]
     [com.jcraft/jsch.agentproxy.jsch "0.0.9"]
     [org.eclipse.jgit "4.10.0.201712302008-r"]
       [com.googlecode.javaewah/JavaEWAH "1.1.6"]
       [com.jcraft/jsch "0.1.54"]



So in summary, we need the following new packages:

- [org.clojure/tools.gitlibs "0.2.64"]

And the following upgrades:

- [org.clojure/data.xml "0.2.0-alpha6"]
- [org.clojure/tools.cli "0.4.2"]

Again, I'm going to skip all the AWS stuff and consider it a "recommends"
rather than a "depends".

Previously, clojure-tools-gitlibs also needed version bumps for its deps of
- libjsch-agent-proxy-java to 0.0.9 (tracked in
  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=905546 and still not done)
- jgit to 4.10.0 (oops, no bug requesting a version bump filed, I'll do that
  and add it as blocking)

Not really any revelations here *phew* but the relatively complex Java dep
version bumps make me nervous.

Attachment: signature.asc
Description: PGP signature

Reply to: