-
Notifications
You must be signed in to change notification settings - Fork 1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
The increase
strategy should move ranges forward, not widen them
#6631
Comments
Minor comment: in the manifest before the update I think you've got a typo / copy-paste error: |
Thank you, fixed! |
I think it might actually be a duplicate of #6519 |
Actually, this one may be a bit broader than the other one. Same root cause but slightly different symptoms. |
Yeah, agreed, I'm going to unify both! |
@deivid-rodriguez @abdulapopoola Hi. Is anything planned for this issue? We're suffering from this bug and need to increase the lower bound (actually, just standalone) of a |
This issue was related to issue 6630 and 6632. I will take a look at them and see what I can come up with. |
The issue has been reproduced internally and are currently analyzing the cause between the package manager and Dependabot. |
The issue regarding lower bound is fixed. As mentioned in the document . The minimum version is going to be increased to match the new version. |
Hi, thanks for looking into this. However, if I recall correctly this is a breaking change without an upgrade path for the old behavior. I believe #6630 should have been addressed first, and released before this one to not break users' flows. My apologies to raise this issue so late. I'd mentioned it sometime before but I only now notice that it's not in this thread. |
Thank @sanderr . I am looking into the widening issue as well. I am planing to come up a sollution for widening and increase together. |
@sanderr , Sorry for late reply. I found a issue that will effect other strategies. Going to create changes for that. Reopening the issue and going to apply the changes. |
I have created a Draft PR to ensure the changes apply only to the increase strategy. I would appreciate it if you could review it: Draft PR #10154. |
I reviewed it to the best of my ability. I have to confess I'm still unclear as to your plan with regards to #6630. The reason I ask is that we do some automated processing of dependabot pull requests. If a future release will change the default behavior from widen to increase, we will have to pause our automated processing before that release. And If I understand correctly (correct me if I'm wrong), your changes affect do exactly this: change the default behavior from widen to increase (by fixing increase, which is the default strategy). So could you tell me what is the plan with regards to that? Will you release the change of default behavior like this (1), together with a fix for #6630 (2) or first release a fix for #6630 and then only release the changes to the default behavior in some future release (3)? |
This is being closed as won't fix for now as we consider a deeper systemic fix. |
This was first noticed at #6625 (comment).
Is there an existing issue for this?
Package ecosystem
Python (but not sure if it's specific to it, could be the same in other ecosystems)
Package manager version
No response
Language version
No response
Manifest location and content before the Dependabot update
pyproject.toml
requirements.txt
dependabot.yml content
Updated dependency
more-itertools from 8.14.0 to 9.0.0
What you expected to see, versus what you actually saw
I saw
I would've expected
because the current behavior is widening, not increasing?
Native package manager behavior
No response
Images of the diff or a link to the PR, issue, or logs
sanderr/inmanta-module-factory#7
Smallest manifest that reproduces the issue
No response
The text was updated successfully, but these errors were encountered: