-
-
Notifications
You must be signed in to change notification settings - Fork 2.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Dependencies #3906
Dependencies #3906
Conversation
I thought it would be a nice idea to auto-generate this file and fortunately someone created a gradle plugin: |
Alphabetical sorting will more or less result in a context-sorting anyway, won't it? After all, the libraries have a url-style naming pattern and we can just add blank lines here and there to make the context stand out. |
In many cases yes. For a lot of JavaFX libraries unfortunately, no. I kept logging and JavaFX grouped for now. But this makes no real sense if we want alphabetical sorting in the future. |
Why not using that plug in I suggested? |
Have not tried it out yet. |
# Conflicts: # build.gradle
I added it. Run following command
Afterwards, find following files:
Excerpt:
When it comes to embedded licenses, the text renderer is not that good:
The HTML one is better in this case: Since, the tool does not use SPDX License Identifiers, we need to make a PR to the tool proposing to use the accepted standard for identifying licenses. We also need to provide an importer for unknown licenses - or we need to contact these authors and ask for a proper license in the POM. Comparison
That means, we skip the human readable project name (which is OK) and the project-URL (in most cases). Sometimes, we have different project URLs:
vs.
So, in summary, I think, it is OK to include the dependency, but we should use it only as cross-check for external-libraries.txt. |
I updated |
I grouped I also added following sections to
|
compile 'org.apache.pdfbox:fontbox:2.0.9' | ||
compile 'org.apache.pdfbox:xmpbox:2.0.9' | ||
|
||
// required for reading write-protected PDFs - see https://github.com/JabRef/jabref/pull/942#issuecomment-209252635 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Should I convert the comment to an ADR and link it (in a comment // see ADR-0004
)? I added that comment, because someone might wonder why bouncycastle is integrated.
Hm, so it doesn't look like we can make any use of the plugin right now? So I propose to remove it and sort all dependencies alphabetically. And keep the manual workflow for now. |
I like the grouping very much, because it eases packaging. Especially in the context of Debian (refs koppor#135). It is also helpful to have the plugin included in |
Probably need to base this on the maintable-beta branch if we want to merge it. Otherwise, we end up with a lot of conflicts there. |
Decision: cherry-pick adr-003 into a new PR. Remainder: Leave as is. |
#3897
I sorted some of the dependencies in build.gradle.
Some dependencies are grouped by context, e.g., JavaFX.
I think however that we need to sort all dependencies alphabetically otherwise synching the external-libs.txt with the dependencies is impossible in my opinion. @JabRef/developers WDYT?
We might add some comments for deps that do not reveal their usage via their name.