MavenHelper
MavenHelper copied to clipboard
krasa
[Feature] Add dependency analyze for BOM project
<dependencyManagement>
<dependencies>
<dependency>
<groupId>org.springframework.cloud</groupId>
<artifactId>spring-cloud-dependencies</artifactId>
<version>${spring-cloud.version}</version>
<type>pom</type>
<scope>import</scope>
</dependency>
<!-- other dependencies -->
...
For now, plugin only support to analyze the dependencies not in dependencyManagement part, so we will not know the potentials conflicts in the BOM until we use it, even you have checked the project before and never change any version of it.
IntelliJ needs to support it: https://youtrack.jetbrains.com/issue/IDEA-283716
It seems that there are 2 different use cases:
- analyzing of BOM itself
- potential conflict analyzing between
dependenciesanddependencyManagementwith imported BOM
And you want both?
I've noticed this too, and like a solution for it. For larger projects we always do version management via dependency management. Being able to verify versions and scopes there would be a great feature. Personally I thought it was a bug that it didn't show, but appearantly the feature doesn't exist yet.
Another related problem: tracing version conflicts between two imported BOMs, as in the sample project attached to this issue: https://github.com/Netflix/dgs-framework/issues/1269
In a non-trivial project, working out where the conflict (old version) is coming from can be very difficult.
