|
|
|
|
|
|
by moosingin3space
1953 days ago
|
|
|
Honestly, even with minor versions, I'd prefer to use something like dependabot, or for a bot to open a pull request bumping versions. Tons of authors mess up semver in subtle ways, it's just much easier to avoid problems if you just pin dependencies. I've started doing this with Nix for my own Rust projects, using the technique described here[1]. Planning on setting up a GitHub workflow to automatically open pull requests with bumped versions of nixpkgs/rust. [1]: https://christine.website/blog/how-i-start-nix-2020-03-08 |
|
|