On 05/01/2012 01:38 AM, Sylvain Le Gall wrote:
Hi,
2012/4/30 Markus Mottl <markus.mo...@gmail.com
<mailto:markus.mo...@gmail.com>>
Hi,
is it advisable to create Godi packages that check out a labeled
version from a version control system rather than download tarballs?
E.g. if I want to make a new release, I'd ideally just want to update
the version number in the Godi-Makefile rather than having to create a
tarball, upload it to some website, get its size and sha1sum, and
finally add this information to Godi. One downside would likely be
somewhat diminished security, since the sha1sum and size may not be
stable (the VC might use updated archive and compression tools to send
you a tarball).
Any ideas whether it's worthwhile for me to go into that direction, or
should I better stick to the old & trusted but more cumbersome way?
Well, it will make GODI depends on git/hg/darcs/svn/whatever, which will
imply increased complexity. You also have to think of other packagers
(Debian/Fedora/Mageia) that will have the same problem. And so on and
so forth.
Hello,
GODI has conf-git to this end I think.
I guess for other VCS the same kind of packages can solve the issue.
I tend to think that distributing source code directly from VCS checkout
is not a good idea -- it seems convenient at first glance but breaks a
lot of convention.
Markus suggested to do checkouts for a given version number.
AFAIR, github and related VCS still provide a tag to tarball method that
should match your expectation. Though I don't know how to enable it.
I think the tarball checkout is disabled on github, for some reason
I don't get.
Regards,
F.
Cheers
Sylvain
_______________________________________________
Godi-list mailing list
Godi-list@ocaml-programming.de
https://godirepo.camlcity.org/mailman/listinfo/godi-list
_______________________________________________
Godi-list mailing list
Godi-list@ocaml-programming.de
https://godirepo.camlcity.org/mailman/listinfo/godi-list
