Clean up the Maven build #262
Conversation
ches
requested review from
davidheryanto,
pradithya,
thirteen37,
tims,
woop and
zhilingc
as code owners
|
@ches: GitHub didn't allow me to request PR reviews from the following users: smadarasmi. Note that only gojek members and repo collaborators can review this PR, and authors cannot review their own PRs. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: ches If they are not already assigned, you can assign the PR to them by writing The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
Hi @ches. Thanks for your PR. I'm waiting for a gojek member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
| <groupId>com.github.gojek.feast</groupId> | ||
| <groupId>feast</groupId> | ||
| <artifactId>feast-ingestion</artifactId> | ||
| <version>9428b230a5</version> | ||
| <version>${project.version}</version> |
| <!--compile 'com.github.spullara.mustache.java:compiler:0.9.5'--> | ||
| <dependency> | ||
| <groupId>com.github.spullara.mustache.java</groupId> | ||
| <artifactId>compiler</artifactId> | ||
| <version>0.9.5</version> | ||
| </dependency> | ||
| <dependency> | ||
| <groupId>com.hubspot.jinjava</groupId> |
There was a problem hiding this comment.
As far as I could tell, this was unused. Unless it was here to override a version coming in transitively. If anyone knows otherwise, let me know. Nothing fails from its removal, but if it was fixing something transitive then it might need integration test coverage to surface a runtime issue.
Actually now that I look at it, the Mustache dep above might be unused too. Were these template languages used for some functionality that's been removed?
There was a problem hiding this comment.
They could have been used previously for the UI. That has been cut out for now. I think it's fine to just delete these for now. If something breaks we can always add them back
| </dependency> | ||
| <dependency> | ||
| <groupId>org.apache.flink</groupId> | ||
| <artifactId>flink-clients_2.11</artifactId> | ||
| <version>1.5.5</version> | ||
| </dependency> | ||
|
|
||
| <!-- Jackson due to jinjava dependency problems --> |
There was a problem hiding this comment.
This suggests these were declared here only for the sake of jinjava removed below, so with jinjava removed I tried removing these too and nothing broke. The Jackson versions are set in <dependencyManagement> so if they're brought in transitively and the versions are important, that should take care of it already.
There was a problem hiding this comment.
@davidheryanto @zhilingc do you have context on these?
I feel like we can just go ahead and remove these.
There was a problem hiding this comment.
For a bit of extra confidence, I've run mvn dependency:analyze -DignoreNonCompile and indeed Jackson is not used in core even transitively, nor are Jinjava or Mustache. The dependency plugin's analyzer isn't perfect but it's pretty good outside of annotations.
Pushing another commit that removes more of the reported unused deps with no apparent breakage.
There was a problem hiding this comment.
Yes, the jinjava library was used as a templating engine for our SQL query in Core to retrieve batch features. But in 0.3, batch feature retrieval responsibility is moved to Serving, so we don't need need jinjava anymore in Core
serving/pom.xml
Outdated
| @@ -292,7 +240,7 @@ | |||
| <dependency> | |||
| <groupId>org.junit.jupiter</groupId> | |||
| <artifactId>junit-jupiter</artifactId> | |||
| <version>RELEASE</version> | |||
| <version>5.5.2</version> | |||
There was a problem hiding this comment.
This quiets a Maven warning because the RELEASE meta version is deprecated. I'm not sure if this should be a 4.x version for JUnit 4, but this is the latest release version. Actually this dependency appears unused except in the Java SDK where it is re-declared since it isn't currently a child module.
There was a problem hiding this comment.
Yes, we're trying to see if we can use JUnit 5 test framework because testing for exceptions and parameterizing test cases is cleaner in JUnit 5. But since in Core, Serving and Ingestion there are some dependencies that may not be as quick to migrate the test to JUnit 5, currently we still use JUnit 4 for those.
|
I've made |
There was a problem hiding this comment.
Thank you for the contribution @ches!
These types of contributions add a lot of value. The changes from 0.1 to 0.3 have left us with quite a few dangling or misconfigured dependencies as I am sure you have discovered.
Overall it looks good, but I would like @zhilingc or @davidheryanto to have a quick look to make sure I didn't miss anything.
One thing that I need to mention is that all contributors need to sign the Google CLA in order to have code merged in. We actually need to have a bot that prompts folks for this.
Thanks again for the submission!
| <!--compile 'com.github.spullara.mustache.java:compiler:0.9.5'--> | ||
| <dependency> | ||
| <groupId>com.github.spullara.mustache.java</groupId> | ||
| <artifactId>compiler</artifactId> | ||
| <version>0.9.5</version> | ||
| </dependency> | ||
| <dependency> | ||
| <groupId>com.hubspot.jinjava</groupId> |
There was a problem hiding this comment.
They could have been used previously for the UI. That has been cut out for now. I think it's fine to just delete these for now. If something breaks we can always add them back
| </dependency> | ||
| <dependency> | ||
| <groupId>org.apache.flink</groupId> | ||
| <artifactId>flink-clients_2.11</artifactId> | ||
| <version>1.5.5</version> | ||
| </dependency> | ||
|
|
||
| <!-- Jackson due to jinjava dependency problems --> |
There was a problem hiding this comment.
@davidheryanto @zhilingc do you have context on these?
I feel like we can just go ahead and remove these.
|
Thanks for the review! I've signed the CLA individually, I'll see about the steps for us to have a corporate signatory this week. It might be good to put setup of a CLA bot in the backlog. |
Great thanks. I have added it as a note in our project backlog. |
Three main themes: - Fix core module dependency on ingestion, so that Maven resolves it as an inter-project dep without requiring it to be installed to (local) repository and mucking with the version. - Use dependencyManagement in parent POM for common dependencies and families -- version drift between modules on things like gRPC and Google Cloud deps will bring more pain in the long run than any short- term convenience of letting them differ between modules. This makes it easy to control that consistently. - Avoid (re)defining properties in submodule POMs -- similar reasoning as dependencies: drift leads to suffering. If you build only a subset of modules at a time, resolved values may differ based on how Maven orders the build. Also avoid repeating things that inherit from the parent POM, like module groupId.
Updating the protobuf/protoc version everywhere to what the SDK used, because it requires new APIs.
Checks mtime versus target/ directory. Saves considerable build time.
|
Rebased to fix conflicts. Needed to trivially touch source code this time, for the rename of |
According to
mvn dependency:analyze -DignoreNonCompile
and running tests.
Also added some undeclared direct dependencies, though not covering them
comprehensively yet.
ingestion/pom.xml
Outdated
| <dependency> | ||
| <groupId>io.opencensus</groupId> | ||
| <artifactId>opencensus-contrib-http-util</artifactId> | ||
| </dependency> |
There was a problem hiding this comment.
Didn't catch it until now but dependency analyzer says this is unused in Ingestion since @zhilingc removed the 0.1 legacy PathUtil earlier today. Also direct use of kafka-clients is gone since today, only Beam APIs for Kafka. Updating the last commit with removals of these, sorry for one more force-push.
Urge the use of <dependencyManagement> by disallowing duplicate dependency declarations. See #262. Making final releases with SNAPSHOT dependencies in use is a really bad idea that can happen by accidental oversight. Enforcer helps ensure it doesn't. For build reproducibility it's good to specify what Maven versions are supported for the project's build to work. 3.0.5 is the minimum required version by all our plugins currently, according to: $ mvn versions:display-plugin-updates
Hi folks!
There are three main themes here:
The pebble that got me rolling, this was giving us a headache while trying to work:
Fix the
coremodule dependency oningestionso that Maven resolves it as an inter-project dep, without requiring it to beinstalled to (local) repository and mucking with the version as you work.Use
<dependencyManagement>in parent POM for common dependencies and families—version drift between modules on things like gRPC and Google Cloud deps will bring more pain in the long run than any short-term convenience of letting them differ between modules I think. This makes it easy to control that consistently.Avoid (re)defining
<properties>in submodule POMs—similar reasoning as dependencies: drift leads to suffering. If you build only a subset of modules at a time, effective values may differ based on how Maven orders the build.Also avoid repeating things that inherit from the parent POM.
The trick to working with
#1in case you build from the command line is Maven's--also-makeflag, which tells it to build project dependencies when building a dependent is requested. So to buildcoreand have it resolveingestionfrom source, it is:I got a little carried away and enabled
-Xlint. That's opinionated, so it's a separate commit I can remove if you're opposed to it.I needed to massage dependency versions slightly, for instance
grpcVersionwas set to a few different values in different modules and I picked what appeared to be most common for current Beam / Google Cloud deps in the tree which finally got Maven's resolver happy and no bincompat issues from tests.This passes
mvn verify, let's see how it fares in CI…Oh, finally, I did not yet touch theThis is done. Let me know if you don't want that.sdk/javamodule that was added in the last day or two, because it is not currently a child of the root POM. I really believe that it should be for the same reasoning of version consistency pain above, so I may push another commit making it so./cc @smadarasmi