MGatner
commented
1 year ago @samsonasik opinion as well
Closed kenjis closed 1 year ago
MGatner
commented
1 year ago @samsonasik opinion as well
kenjis
commented
1 year ago @MGatner @samsonasik Ah, we cannot lock the version in this repo? If we do, other people who use this cannot upgrade their rector version.
If we don't, we would need to lock it in our own repos to whatever config we are using.
Yes.
kenjis
commented
1 year ago After all, since rector is not yet stable, the best practice is for each project to lock in a version. Otherwise, rector.php may stop working.
If we lock the version in this repository, and even if we constantly update to the latest version, rector.php in the user's repository will not be automatically updated, which could cause rector to stop working.
I'm starting to feel like we should leave require-dev as it is.
samsonasik
commented
1 year ago pin rector to specific version is fine, on laminas, we are doing that, see
samsonasik
commented
1 year ago When new rector released, pin version need to be updated (or not if cause error),
If pin updated, then create new release of dev kit
datamweb
commented
1 year ago If pin updated, then create new release of dev kit
last release of dev Dec 22, 2022 but rector new version every week:smiley:. dev cannot act like reactor.
MGatner
commented
1 year ago Right. I don't want us to be managing releases here just around Rector. My opinion: we include Rector with ^ and let devs handle their own version locking (or not). Most of my smaller repo projects run fine between Rector patches and aren't worth locking to a specific version - I just go fix them when Dependabot breaks a pipeline (e.g. deprecated rule).
kenjis
commented
1 year ago @MGatner I changed to ^0.18.3.
kenjis
commented
1 year ago I think we can release a new devkit after merging this PR.
Description See https://github.com/codeigniter4/devkit/pull/111#issuecomment-1712987977
Checklist: