rewrite icon indicating copy to clipboard operation
rewrite copied to clipboard
verified publisher icon openrewrite

Also exclude omitted dependencies

Open timtebeek opened this issue 1 year ago • 1 comments

What's changed?

What's your motivation?

When conflicts occur dependencies are omitted; when we then exclude from the conflict, the omitted dependency can resurface. The goal of ExcludeDependency is to fully exclude a dependency, not to see the omitted conflict being used. We should then also add <exclusion> where dependencies are omitted.

Anything in particular you'd like reviewers to focus on?

Anyone you would like to review specifically?

Have you considered any alternatives or workarounds?

Any additional context

Checklist

  • [ ] I've added unit tests to cover both positive and negative cases
  • [ ] I've read and applied the recipe conventions and best practices
  • [ ] I've used the IntelliJ IDEA auto-formatter on affected files

timtebeek avatar Sep 03 '24 08:09 timtebeek

As discussed on our OSS Slack:

I've not had time to dive in again; what I think is happening here is that we do not mark the log4j-api as a transitive dependency if that's omitted for conflict ; that's technically correct, but when we then exclude the conflicted dependencies elsewhere it will no longer be omitted for a structural fix we'd ought to exclude the transitive dependency even when omitted due to a conflict, I think

timtebeek avatar Sep 30 '24 14:09 timtebeek

  • Replaced by https://github.com/openrewrite/rewrite/pull/4563

timtebeek avatar Oct 27 '24 16:10 timtebeek