move to maintained fork of mapstructure #21557
Conversation
jm96441n
added
backport/all
github-actions
bot
added
theme/api
| @@ -215,7 +214,7 @@ func TestGenerateConfigFromFlags(t *testing.T) { | |||
| }, | |||
| }, | |||
| }, | |||
| expError: "failed parsing Proxy.Config: 1 error(s) decoding:\n\n* cannot parse 'bind_port' as int:", | |||
There was a problem hiding this comment.
so there was a small change in how errors are reported that we needed to update here
|
Generally LGTM, though noting this bit from the migration guide:
it seems we could possibly make a smaller change to start, and ensure stability for backport patches until we're sure the change is baked, since as you noted this library is pervasive in its use. No strong concern moving to v2 on |
🙏
|
@zalimeni that's a good point, I jumped to v2 because of this line from the docs: I'm down for either, doing the replace is probably safer short term, but given the current state that v2 is meant to be compatible with v1 of the mitchelh and it would require any consumers of the |
That's a good callout. I think we might be able to chalk that up to the downstream's responsibility, since AFAIK there's no CVE currently pushing migration. If we get to that point, v2 backports probably becomes a necessity. I'm also happy deferring to quorum since I see @jmurret approved and I think the risk is relatively low! |
|
yeah, if we go down the replace route we'll need to update our usage docs for using the api package to ensure end users include that replace statement in their go.mod |
Yeah, diverging might not be ideal in that sense. Another option, and maybe a good starting point, would be to actually use that dependency (as you've done) rather than a |
|
I am in favor this and not using
I kind of rubber stamped this and Michael gave a little more thought. |
|
|
|
so I'm not sure we can pin without a replace, our options are:
|
🤦🏻♂️ I missed this, sorry @jm96441n . Looks like that shuts down a simple migration path for submodule consumers until the jump. I think of the remaining options, 1 or 3 makes the most sense. The risk of jumping to v2 seems low-but-not-0 given minor breaking run-time changes, but - given we aren't being forced by any CVE or incompatibility - I'd still be in favor of only doing so on It's a great call for 1.21 LTS, but doesn't seem necessary for released versions, and we can always backport later if we need to. I'm also fine w/ 3 but seems this is a "when" not "if" problem, and we should definitely do it before 1.21, IMO. |
jm96441n
added
pr/no-backport
and removed
backport/all
|
no backporting makes sense to me! this was something I wanted to get ahead of before it actually became a problem given the original repos are going to be archived |
|
This pull request has been automatically flagged for inactivity because it has not been acted upon in the last 60 days. It will be closed if no new activity occurs in the next 30 days. Please feel free to re-open to resurrect the change if you feel this has happened by mistake. Thank you for your contributions. |
github-actions
bot
added
the
meta/stale
Description
the
mitchelh/matpstructurerepo is being archived (see https://gist.github.com/mitchellh/90029601268e59a29e64e55bab1c5bdc) the go-viper fork is the maintained one https://github.com/go-viper/mapstructure?tab=readme-ov-file#migrating-from-githubcommitchellhmapstructure there should be no code changes required just changing the dependencyTesting & Reproduction steps
Links
PR Checklist