Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DaggerIO modules manager #30131

Open
19 of 53 tasks
secustor opened this issue Jul 11, 2024 · 0 comments
Open
19 of 53 tasks

DaggerIO modules manager #30131

secustor opened this issue Jul 11, 2024 · 0 comments
Labels
new package manager New package manager support priority-3-medium Default priority, "should be done" but isn't prioritised ahead of others type:feature Feature (new functionality)

Comments

@secustor
Copy link
Collaborator

New package manager questionnaire

Did you read our documentation on adding a package manager?

Basics

What's the name of the package manager?

Dagger.io

What language(s) does this package manager support?

Dagger Pipelines

How popular is this package manager?

10.6k github stars

Does this language have other (competing?) package managers?

  • Yes (give names).
  • No.

What are the big selling points for this package manager?

There are no other package managers for Dagger Modules

Detecting package files

What kind of package files, and names, does this package manager use?

dagger.json

Which fileMatch pattern(s) should Renovate use?

["(^|/)dagger\.json"]

Do many users need to extend the fileMatch pattern for custom file names?

  • Yes, provide details.
  • No.

Is the fileMatch pattern going to get many "false hits" for files that have nothing to do with package management?

No

Parsing and Extraction

Can package files have "local" links to each other that need to be resolved?

Yes

Package file parsing method

The package files should be:

  • Parsed together (in serial).
  • Parsed independently.
  • One file, doesn't matter

Which format/syntax does the package file use?

  • JSON
  • TOML
  • YAML
  • Custom (explain below)

How should we parse the package files?

  • Off the shelf parser.
  • Using regex.
  • Custom-parsed line by line.
  • Other.

Does the package file have different "types" of dependencies?

  • Yes, production and development dependencies.
  • No, all dependencies are treated the same.

List all the sources/syntaxes of dependencies that can be extracted

The dagger file contains a dependencies (or doesn't if empty), which is just a list of dependencies either in the form:
{"name": "", "source": "<path/to/module/relative/to/it>"} or
{"name": "", "source": "github.com/<username>/<project>/<folder_of_module>@<commit_hash>"}

Describe which types of dependencies above are supported and which will be implemented in future

Dagger Modules

Versioning

What versioning scheme does the package file(s) use?

Commit Hashes

Does this versioning scheme support range constraints, like ^1.0.0 or 1.x?

  • Supports range constraints (for example: ^1.0.0 or 1.x), provide details.
  • No.

Lookup

Is a new datasource required?

  • Yes, provide details.
  • No.

Will users want (or need to) set a custom host or custom registry for Renovate's lookup?

  • Yes, provide details.
  • No.

Where can Renovate find the custom host/registry?

  • No custom host or registry is needed.
  • In the package file(s), github link.
  • In some other file inside the repository, provide details.
  • User needs to configure Renovate where to find the information, provide details.

Are there any constraints in the package files that Renovate should use in the lookup procedure?

  • Yes, there are constraints on the parent language (for example: supports only Python v3.x), provide details.
  • Yes, there are constraints on the parent platform (for example: only supports Linux, Windows, etc.), provide details.
  • Yes, some other kind of constraint, provide details.
  • I am not aware of any constraints.

Will users need the ability to configure language or other constraints using Renovate config?

  • Yes, provide details.
  • No.

Artifacts

Does the package manager use a lock file or checksum file?

  • Yes, uses lock file.
  • Yes, uses checksum file.
  • Yes, uses lock file and checksum file.
  • No lock file or checksum.

Is the locksum or checksum mandatory?

  • Yes, locksum is mandatory.
  • Yes, checksum is mandatory.
  • Yes, lock file and checksum are mandatory.
  • No mandatory locksum or checksum.
  • Package manager does not use locksums or checksums.

If lockfiles or checksums are used: what tool and exact commands should Renovate use to update one (or more) package versions in a dependency file?

Package manager cache

Does the package manager use a cache?

  • Yes, provide details.
  • No.

If the package manager uses a cache, how can Renovate control the cache?

  • Package manager does not use a cache.
  • Controlled via command line interface, provide details.
  • Controlled via environment variables, provide details.

Should Renovate keep a cache?

  • Yes, ignore/disable the cache.
  • No.

Generating a lockfile from scratch

Renovate can perform "lock file maintenance" by getting the package manager to generate a lockfile from scratch.
Can the package manager generate a lockfile from scratch?

  • Yes, explain which command Renovate should use to generate the lockfile.
  • No, the package manager does not generate a lockfile from scratch.
  • No, the package manager does not use lockfiles.

Other

What else should we know about this package manager?

Originally posted by @LuminatiHD in #30116 (comment)
@secustor secustor changed the title new DaggerIO modules manager DaggerIO modules manager Jul 11, 2024
@secustor secustor added priority-3-medium Default priority, "should be done" but isn't prioritised ahead of others new package manager New package manager support labels Jul 11, 2024
@renovatebot renovatebot deleted a comment from github-actions bot Jul 11, 2024
@HonkingGoose HonkingGoose added the type:feature Feature (new functionality) label Jul 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
new package manager New package manager support priority-3-medium Default priority, "should be done" but isn't prioritised ahead of others type:feature Feature (new functionality)
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@secustor @HonkingGoose