rules_jvm_external

rules_jvm_external copied to clipboard

Support in memory PGP signing

1

**Background** The export rule only supports `gpg_sign` option which requires the `gpg` binary to be installed on the machine and set up correctly. This doesn't fit the need if we...

ThomasCJY

**Background** Address issue https://github.com/bazelbuild/rules_jvm_external/issues/1190 Maven central requires OpenPGP signatures for all the artifacts. Gradle did it through the [signing plugin](https://docs.gradle.org/current/userguide/signing_plugin.html#using_in_memory_ascii_armored_openpgp_subkeys). In Bazel jvm rule the only existing support is using...

ThomasCJY

In bzlmod, composing modules is difficult

5

Specifically, the maven.install invocation quite rightly warns you when some dependent module has requested a different version than you, but gives you no tools to solve the problem. Perhaps it...

Jonpez2

Add support for resources in javadoc jars and make variable substitution in javadoc arguments

1

There's two use cases I'm trying to account for here. 1. I need to add resources to the javadoc jar such as a `LICENSE` file. 2. I need to send...

vinnybod

Use a more recent rules_android

6

Necessary to avoid loading the `@bazel_tools//tools/android` package, which relies on bind()s to work, which rules_android HEAD has deleted.

ted-xie

Using the examples in the documentation, consider the following setup: ```python # MODULE.bazel bazel_dep(name = "rules_jvm_external", version = "6.1") maven = use_extension("@rules_jvm_external//:extensions.bzl", "maven") maven.artifact( artifact = "grpc-core", exclusions = ["io.grpc:grpc-util"],...

JohnnyMorganz

In BzlMod, overrides are not repo-specific

5

When using bzlmod, if you invoke maven.override( name = "repo1", coordinates = "foo.bar:baz", target = "//foo/bar:baz", ) and then invoke maven.install twice: maven.install( name = "repo1", ... ) maven.install( name...

Jonpez2

Snapshot artifacts are not resolved by the Maven resolver

1

In Artifactory, we have a repository called `maven` and inside maven, we can assume we have a library under `maven/my/org/my-library/0.3.0-SNAPSHOT`. In this index, we have the following files: - maven-metadata.xml...

tharakadesilva

The `maven_export` rule and the corresponding `MavenPublisher` application only support basic auth using username/password. This does not work for repositories which use token-based auth. The most common example of this...

SanjayVas

FR: Warnings about deviations from the BOM

2

We might be doing a maven.artifact for a coordinate that is coming from a BOM with the same version. Would be nice to get a warning that tells me to...

tharakadesilva