>>>>> Jean-Baptiste Onofré <j...@nanthrax.net>: > Not really imho : each project does the way it considers the best.
> For instance, quarkus is using a bop approach similar to Karaf: it exposes > all dependencies in the BOM as a guarantee about the versions working fine. > The idea in Karaf bom is to clearly state the versions verified in Karaf. Yeah, and when I think back, I think this was what I wanted when I originally requested a BOM. The reason was that dependencies in my build was lagging a lot compared to what was currently being used by the karaf runtime. I wanted not to have to think about what version I should use. And using something like renovator (which maybe didn't even exist back then?), would risk me going past what the runtime was using and use something newer and I didn't want that.
