update-deps.py: Allow bazel_dep + archive/git_override #5876
Conversation
CodSpeed Performance ReportMerging this PR will degrade performance by 84.24%Comparing Summary
Performance Changes
Footnotes
|
npaun
force-pushed
the
npaun/bazel-dep-with-override
branch
from
453cee3 to
59df4a3
Compare
npaun
force-pushed
the
npaun/bazel-dep-with-override
branch
from
59df4a3 to
a8a1239
Compare
| "use_bazel_dep": true, | ||
| "owner": "google", | ||
| "repo": "perfetto", | ||
| "freeze_version": "v53.0", |
There was a problem hiding this comment.
nit: No need to freeze the version per se, it's just that patches might break. Let's add a comment or unfreeze
| "name": "ada-url", | ||
| "type": "bazel_dep" | ||
| }, | ||
| // BoringSSL may subtly break backwards compatibility and behave differently than the latest FIPS |
There was a problem hiding this comment.
I wrote this comment, but it seems too pedantic in retrospect: If there are breaking changes, we will likely notice through our tests failing, and the downstream build will not be directly affected. We'll be able to clean up breaking tests as they happen, as with other dependencies. I guess we can reduce the comment to just say that this is expected to break tests more often than other dependencies?
2 participants
This PR adds a new flag to our existing dependency types for downloading packages:
github_releasegithub_tarballgit_cloneIf
use_bazel_dep: trueis set, we generate abazel_dep()+ an override directive (e.g.archive_override()orgit_override(). Otherwise, we use the existing templates for aWORKSPACEbased repo.Additionally
use_module_bazel_from_bcr: some.version.herecan be used to automatically download an inject aMODULE.bazelfile from BCR if one is available from there, but not in the project itself.This is basically the last PR in my project of upgrading
update-deps.py. There's probably still room for small simplifications / cleanups down the road, but the vast majority of our dependencies are now automated again.