Loading...

XML

Word

Printable

Type: Task
Resolution: Done
Priority: Normal
Fix Version/s: 2024-01-10 - API
Affects Version/s: None
Component/s: None
Labels:

Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Git Pull Request:
https://github.com/RedHatInsights/rhsm-subscriptions/pull/2914
Intelligence Requested:
Market:

SFDC Cases Links:
SFDC Cases Counter:

The Spring bom and the Spring Gradle plugin are versioned independently in the dependencies.gradle file:

ext.plugins = [
        // ...
        "org.springframework.boot:spring-boot-gradle-plugin:3.1.6",
        // ...
]

// BOMs
libraries["spring-boot-dependencies"] = "org.springframework.boot:spring-boot-dependencies:3.1.6"

This leads to mismatching issues when both dependencies should use the same version. Moreover, dependabot will create separate pull requests to bump these dependencies.

As a solution, we could have a common property "quarkus.version" and use it in both dependencies, though I'm not sure how compatible this would be for dependabot.

Another solution would be to try the Dependabot groups feature: https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#groups

Acceptance Criteria

Both dependencies should use the same version
Dependabot should bump the both dependencies at the same time

clones

SWATCH-2035 The Quarkus Platform and Quarkus Gradle plugin are versioned independendly

Closed

Assignee:: Jose Carvajal Hilario

Reporter:: Jose Carvajal Hilario

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2023/12/22 6:28 AM

Updated:: 2024/01/10 3:40 PM

Resolved:: 2024/01/04 8:09 PM

Details

Description

Acceptance Criteria

Attachments

Issue Links

Activity

People

Dates