Surviving Dependency Hell with Maven by Robert Scholte and Ray Tsang

preview_player
Показать описание
Dependency conflicts come in many different forms and have different impacts on your applications. This presentation examines common causes of a dependency conflict, how you can mitigate it as a library developer, and how end users can resolve it. Java Champions Ray Tsang and Robert Scholte will share their knowledge, Ray (developers advocate for Google) from the user perspective and Robert (chairman Apache Maven) from the Maven perspective. Join this session to see common issues Ray has observed from working with customers, and Robert’s advise on how to detect issues early. It also covers what Google has been documenting in terms of best practices and what tools it has created to help, based on its learnings.
  1. JNation
  2. java
  3. maven
Рекомендации по теме
Surviving Dependency Hell 0:30:28

Surviving Dependency Hell with Maven - Ray Tsang & Robert Scholte

Surviving Dependency Hell 0:54:46

Surviving Dependency Hell with Maven by Robert Scholte and Ray Tsang

Surviving Dependency Hell 1:05:44

Surviving Dependency Hell

J-Fall 2019: Ray 0:43:37

J-Fall 2019: Ray Tsang & Robert Scholte - Surviving Dependency Hell

St. Louis Java 1:12:10

St. Louis Java Users Group January 2021: Maven Dependency Management

EQSP 9/20: Some 0:45:18

EQSP 9/20: Some Recipes Against Dependency Hell [software quality crash course]

Dependency hell - 0:27:25

Dependency hell - Or, Developers' perception of software dependencies - GitHub Satellite 2020

Finding and Remediating 0:22:05

Finding and Remediating Vulnerabilities with Maven Dependency Management

Dependency Hell 0:16:04

Dependency Hell

Stephan Bonnemann: 'Dependency 0:16:19

Stephan Bonnemann: 'Dependency Hell Just Froze Over'

What is 'Dependency 0:05:25

What is 'Dependency Hell'? - Devsena Mishra

Dependency Hell, Monorepos 0:39:26

Dependency Hell, Monorepos and beyond

Developer Dependency Hell 0:14:14

Developer Dependency Hell

How do I 0:00:26

How do I exclude all the transitive dependencies of a single dependency in Maven? | javapedia.net

What I Wish 0:52:27

What I Wish I Knew About Maven Years Ago by Andres Almiray

Trying to fix 0:08:52

Trying to fix Flutter dependency hell

(I can't get 0:13:32

(I can't get no) satisfaction: Can SAT-solvers resolve dependency hell?

Week 9: dependency 0:52:11

Week 9: dependency HELL

Maven 3 / 0:17:25

Maven 3 / 4 / 5 with Robert Scholte

Java9 and the 0:30:00

Java9 and the impact on Maven Projects by Robert Scholte

Andres Almiray - 1:03:05

Andres Almiray - What I Wish I Knew About Maven Years Ago

What I Wish 0:53:01

What I Wish I Knew About Maven Years Ago - Singapore Java User Group

#20 - Maven 0:16:50

#20 - Maven versions

What I Wish 0:41:28

What I Wish I Knew About Maven Years Ago by Andres Almiray

Комментарии
Автор

This was really an eye opener for me. Thank you. Nevertheless ... I think you didn't mention how to fix split package problems: When using spring boot I have many dependencies to versions of "jakarta dependencies" (e.g. jakarta.activation-api) which duplicates javax.activation-api from other libraries. They both have differen group ids, artifact id, versions and classes hashes ...

skrrytch
Автор

Can't we just exclude `guava-jdk5` to resolve the issue?

debkr
Автор

The problem is more or less the attitude of open source projects to put in a s*hit ton of dependencies for the sake of „hey there is a library. we use it“
How many times you see os projects using apache commons io, … for just one method. That brings the cost of having a ton of CVE‘s i side your project and spills up your processing and introduces a dependency hell.
It is such a shame for „modern“ development.

interrogationwatch