killercup
Merge cargo-upgrade into cargo
A scratchpad for https://github.com/rust-lang/cargo/issues/12425
Merge plan
- [ ] Resolve #737
- [ ] Resolve #751
- [ ] Create
merge-upgradebranch - [ ] Refactor to match cargo's directory structure
- [ ] Refactor out of
cargosops/cargo_add/manifest.rsinto a place for reuse- Possibilities:
ops/cargo_editoreditand make it public
- Possibilities:
- [ ] Port to cargo's internals
- [ ] Merge the command (like in rust-lang/cargo#10472)
- [ ] Update documentation (like in rust-lang/cargo#10578)
- [ ] Update completions (like in rust-lang/cargo#10577)
- [ ] Update https://github.com/rust-lang/rust/issues/44663 to include
- cargo-upgrade selecting a safe version (#445)
- for suggesting the user bump major (#144)
- [ ] Transfer to cargo repo:
- #513
- #410
Open questions
- How do we represent "fail if manifest will change" and "upgrade using lock file"
- Currently "fail if manifest will change" is
--lockedand "upgrade using lock file" is--to-lockfile - Alt: if you squint
--lockedcould also mean "upgrade using lock file" - Prompt the user for each upgrade by default but also accept
--choice <none|locked|latest>
- Currently "fail if manifest will change" is
Bugs
- https://github.com/killercup/cargo-edit/issues/737
- https://github.com/killercup/cargo-edit/issues/751
- https://github.com/killercup/cargo-edit/issues/680
- https://github.com/killercup/cargo-edit/issues/605
- https://github.com/killercup/cargo-edit/issues/444
- https://github.com/killercup/cargo-edit/issues/569
- https://github.com/killercup/cargo-edit/issues/565
- https://github.com/killercup/cargo-edit/issues/460 (should be fixed just by porting to cargo's registry code)
- https://github.com/killercup/cargo-edit/issues/432
- https://github.com/killercup/cargo-edit/issues/408
Requests
- https://github.com/killercup/cargo-edit/issues/513
- https://github.com/killercup/cargo-edit/issues/707
- https://github.com/killercup/cargo-edit/issues/445
- https://github.com/killercup/cargo-edit/issues/410
- https://github.com/killercup/cargo-edit/issues/144
- ~~https://github.com/rust-lang/cargo/issues/4309~~ #753
- https://github.com/killercup/cargo-edit/issues/553
- https://github.com/killercup/cargo-edit/issues/552
- https://github.com/killercup/cargo-edit/issues/516
- https://github.com/killercup/cargo-edit/issues/454
- https://github.com/killercup/cargo-edit/issues/426
- https://github.com/killercup/cargo-edit/issues/265
- https://github.com/killercup/cargo-edit/issues/158
Uncertain
- https://github.com/killercup/cargo-edit/issues/470
- https://github.com/killercup/cargo-edit/issues/475
Prior art
- poetry
- Upgrade individual dependency via
poetry add <name>@latest - No bulk upgrade, see https://github.com/python-poetry/poetry/issues/461
- Upgrade individual dependency via
- for yarn and pnpm, its unclear how much behavior is like
cargo updatevscargo upgrade go get- Upgrade individual dependency via
go get <dep>@latest - No bulk upgrade
- Upgrade individual dependency via
- I didn't see anything for Julia, Ruby, or Dart.
Current design
cargo-upgrade 0.8.0
Upgrade dependencies as specified in the local manifest file (i.e. Cargo.toml)
USAGE:
cargo upgrade [OPTIONS] [DEPENDENCY]...
ARGS:
<DEPENDENCY>... Crates to be upgraded
OPTIONS:
--all [deprecated in favor of `--workspace`]
--allow-prerelease Include prerelease versions when fetching from crates.io (e.g. 0.6.0-alpha')
--dry-run Print changes to be made without making them
--exclude <EXCLUDE> Crates to exclude and not upgrade
-h, --help Print help information
--manifest-path <PATH> Path to the manifest to upgrade
--offline Run without accessing the network
-p, --package <PKGID> Package id of the crate to add this dependency to
--skip-compatible Only update a dependency if the new version is semver incompatible
--to-lockfile Upgrade all packages to the version in the lockfile
-V, --version Print version information
--workspace Upgrade all packages in the workspace
-Z <FLAG> Unstable (nightly-only) flags [possible values: preserve-precision]
This command differs from `cargo update`, which updates the dependency versions recorded in the local lock file (Cargo.lock).
If `<dependency>`(s) are provided, only the specified dependencies will be upgraded. The version to upgrade to for each can be specified with e.g.
`[email protected]` or `serde@>=0.9,<2.0`.
Dev, build, and all target dependencies will also be upgraded. Only dependencies from crates.io are supported. Git/path dependencies will be
ignored.
All packages in the workspace will be upgraded if the `--workspace` flag is supplied. The `--workspace` flag may be supplied in the presence of a
virtual manifest.
If the '--to-lockfile' flag is supplied, all dependencies will be upgraded to the currently locked version as recorded in the Cargo.lock file. This
flag requires that the Cargo.lock file is up-to-date. If the lock file is missing, or it needs to be updated, cargo-upgrade will exit with an
error. If the '--to-lockfile' flag is supplied then the network won't be accessed.
--manfest-path and --package working like normal but --exclude being an opt-out for when no DEPENDENCY is specified and we select all, is odd.
Another open question is if we should somehow integrate this into cargo update or if it should remain a distinct command. I was hoping some prior art would help clarify some decisions here but not really.
I split out the main UX question to https://github.com/killercup/cargo-edit/issues/737
Any update on this issue @epage ? I would love to see this merged into the cargo update command. Or at least into the official cargo distribution.
A design for a subset of the functuionality being merged into cargo update has been FCPed: https://github.com/rust-lang/cargo/issues/12425