- edited description
Updating com.vladsch.flexmark version breaks markup filter
Used by these artifacts:
- com.vladsch.flexmark:flexmark
- com.vladsch.flexmark:flexmark-ext-tables
- com.vladsch.flexmark:flexmark-ext-yaml-front-matter
- com.vladsch.flexmark:flexmark-ext-gfm-strikethrough
Current version used by Okapi : 0.35.10
Latest version (today) is 0.50.16
See latest version at https://mvnrepository.com/artifact/com.vladsch.flexmark/flexmark/
Comments (10)
-
reporter -
cc @Kuro Kurosaka
The fellow who maintains flexmark puts out releases constantly; it’s hard to keep up. We should be a little careful not regress anything here since there’s a lot of churn in that codebsae.
-
I don’t understand the context of this and similar issues. Is the version I picked in my last update (0.35.10) breaking something? Generally speaking no one should update any artifact to their highest versions just because the version is available. We should have a specific reason to do so.
FYI, in https://github.com/vsch/flexmark-java/issues/341#issuecomment-485033418, the author explicitly warned against upgrading beyond version 0.40.0 because there are major changes and some migration work would be required.
I suggest closing this issue as invalid or wontfix.
-
It looks like Mihai was running a dependency scanner and flagging things that caused problems.
-
reporter “I don’t understand the context of this and similar issues”
…
“Generally speaking no one should update any artifact to their highest versions just because the version is available. We should have a specific reason to do so.”I think that it is a good “habit” to update libraries with each Okapi release.
We usually try to do this soon after a release, so that we have time to fix issues until the next one.It is often a lot easier to keep up and make small changes with every release than let them “rot” for several years.
The problem with waiting until we have a specific reason is that it becomes very hard to update
One such example is Lucene. We use 3.3.0 (June 2011), when the last version is 8.1.1 (May 2019), and we have it on the agenda for months now.If I look at flexmark I can see a few fixes between 35.10 and 50.16 that might be good to have (compatibility with Java 9+, StringIndexOutOfBoundsException, end of line problems, all kind if fixes)
https://github.com/vsch/flexmark-java/blob/master/VERSION.mdI agree that at times it can be a pain in the *** :-)
But I think that skipping many versions waiting for a reason is worse.
If we don’t do this for each Okapi release, what would be good reasons to update?
Security vulnerability, newer JDK compatibility, major bug fixes? What is “major bug”?
I think we need some kind of policy / guidelines / rules for when to do things.Mihai
-
reporter It looks like Mihai was running a dependency scanner and flagging things that caused problems.
A bit more than that :-)
I’ve already updated non-breaking libraries.Mihai
-
The good reason to update would be to fix a specific bug or implement a new feature. I am afraid I don’t agree on the idea that we should always update all dependent components to the highest available ones, especially for the volunteer based open-source project like Okapi that doesn’t have a dedicated maintenance engineer. But if you are volunteering to do this, I wouldn’t stop you as long as we still maintain the current Java requirement (Java 8 ) and there won’t be any major changes in the parse result. This is important because many users, including clients of Spartan Software which indirectly support the Okapi project, use Okapi in their production systems. They don’t want to see unintended, unnecessary changes in behavior.
-
reporter - changed status to resolved
Fixes
#838, Updating com.vladsch.flexmark to latest versionMost of the problems were classes moved to a different package.
CustomNode and CustomBlock are deprecated https://github.com/vsch/flexmark-java/blob/master/VERSION.md#04018
→ <<cset 73078a8a93bf>>
-
reporter - changed status to open
Bitbucked marked this as "resolved" when I created a PR That's wrong... it should only do this after the PR is merged.
-
reporter - changed status to resolved
Merged in mihai_update_vladsch_version (pull request #335)
Fixes
#838, Updating com.vladsch.flexmark to latest version→ <<cset 94244484e3ca>>
- Log in to comment