leiningen
leiningen copied to clipboard
Make more useful / less risky recommendations when encountering version ranges
Hi!
Say I place a dependency on [org.webjars.npm/github-com-bevacqua-dragula "3.7.2"]
.
Then the:pedantic? :ranges
option will give me the following warning:
WARNING!!! version ranges found for:
[org.webjars.npm/github-com-bevacqua-dragula "3.7.2"] -> [org.webjars.npm/contra "[1.9.4,1.9.4]"]
Consider using [org.webjars.npm/github-com-bevacqua-dragula "3.7.2" :exclusions [org.webjars.npm/contra]].
That warning is inviting me to remove a transitive dependency altogether, therefore breaking the main functionality.
A more useful warning would be:
WARNING!!! version ranges found for:
[org.webjars.npm/github-com-bevacqua-dragula "3.7.2"] -> [org.webjars.npm/contra "[1.9.4,1.9.4]"]
Consider using [org.webjars.npm/github-com-bevacqua-dragula "3.7.2" :exclusions [org.webjars.npm/contra]],
along with adding an explicity dependency on org.webjars.npm/contra, at a fixed, known-good version.
WDYT?
Thanks - Victor
Yes, that's better; happy to take a patch.
Related to #1729.