cmd/go: go Mod should use go dep SemVer behavior for < v1.0.0 #37117
Comments
cagedmantis
changed the title
cagedmantis
added
NeedsDecision
|
The go module behavior is documented at: https://github.com/golang/go/wiki/Modules |
|
/cc @bcmills @jayconrod |
|
If you don't want to pull in breaking changes, either don't pass the |
|
So we essentially created a situation where:
It seems that -reading that v0 is all fair game- makes it way less useful (specially to And I'm not sure what was so "bad" or "wrong" about Dep's approach that it was decided to diverge from? was it maybe considered to propose an update to SemVer to reflect that behavior.... I would like to use this issue to at least document the thought process that went into this decision... |
|
@EngHabu The thought process and design decisions that went into modules are well described in Russ's series of blog posts. In particular, see The Principles of Versioning in Go. |
What version of Go are you using (
go version)?go version go1.13.3 darwin/amd64
Does this issue reproduce with the latest release?
Yes
What operating system and processor architecture are you using (
go env)?GO111MODULE="on"
GOARCH="amd64"
GOEXE=""
GOFLAGS=""
GOHOSTARCH="amd64"
GOHOSTOS="darwin"
GONOPROXY=""
GONOSUMDB=""
GOOS="darwin"
GOPRIVATE=""
AR="ar"
CC="clang"
CXX="clang++"
CGO_ENABLED="1"
CGO_CFLAGS="-g -O2"
CGO_CPPFLAGS=""
CGO_CXXFLAGS="-g -O2"
CGO_FFLAGS="-g -O2"
CGO_LDFLAGS="-g -O2"
PKG_CONFIG="pkg-config"
What did you do?
I've a project with a dependency on lib A version v0.3.2, I ran:
go get -u ./...lib A available versions are:
v0.3.2andv0.4.0What did you expect to see?
Go.sum/go.mod should not update to
v0.4.0since it's a break change based on dep convention described here:https://github.com/golang/dep/blob/master/docs/Gopkg.toml.md
What did you see instead?
It pulled
v0.4.0instead which lead to compilation errorsThe text was updated successfully, but these errors were encountered: