Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
On the Meaning of Version Numbers
Search
Hynek Schlawack
April 25, 2020
0
290
On the Meaning of Version Numbers
Hynek Schlawack
April 25, 2020
Tweet
Share
More Decks by Hynek Schlawack
See All by Hynek Schlawack
Subclassing, Composition, Python, and You
hynek
3
240
Classy Abstractions @ Python Web Conf
hynek
0
180
Maintaining a Python Project When It’s Not Your Job
hynek
1
2.4k
How to Write Deployment-friendly Applications
hynek
0
2.5k
Solid Snakes or: How to Take 5 Weeks of Vacation
hynek
2
5.8k
Get Instrumented: How Prometheus Can Unify Your Metrics
hynek
4
11k
Beyond grep – PyCon JP
hynek
1
3.3k
Beyond grep – EuroPython Edition
hynek
1
10k
Beyond grep: Practical Logging and Metrics
hynek
3
1.2k
Featured
See All Featured
Into the Great Unknown - MozCon
thekraken
33
1.5k
A Modern Web Designer's Workflow
chriscoyier
693
190k
Measuring & Analyzing Core Web Vitals
bluesmoon
4
170
Designing Dashboards & Data Visualisations in Web Apps
destraynor
229
52k
The MySQL Ecosystem @ GitHub 2015
samlambert
250
12k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
127
18k
Why You Should Never Use an ORM
jnunemaker
PRO
54
9.1k
Practical Tips for Bootstrapping Information Extraction Pipelines
honnibal
PRO
10
810
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
132
33k
How To Stay Up To Date on Web Technology
chriscoyier
789
250k
For a Future-Friendly Web
brad_frost
175
9.4k
How to Think Like a Performance Engineer
csswizardry
22
1.2k
Transcript
Hynek Schlawack On the Meaning of Version Numbers @hynek
Semantic Versioning @hynek
1.2.3 micro @hynek
1.2.3 minor micro @hynek
1.2.3 major minor micro @hynek
SemVer is a poor choice for most projects. @hynek
SemVer doesn’t deliver on its promises. @hynek
“I can choose to only get bugfixes.” https://xkcd.com/1172/ @hynek Hyrum’s
Law
Very few open source projects have the resources to maintain
more than one release branch (properly). “I can choose to only get bugfixes.” @hynek
If You Pin Major Version In Your Applications @hyne
-No security updates. If You Pin Major Version In Your
Applications @hyne
-No security updates. -The longer you wait, the harder it
gets. If You Pin Major Version In Your Applications @hyne
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App <2.0
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App <2.0 2.0.0
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App <2.0 other- pkg >2.0 2.0.0
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App <2.0 other- pkg >2.0 Conflict! 2.0.0
@hynek
1. Have tests. @hynek
1. Have tests. 2. Pin your dependencies. @hynek
1. Have tests. 2. Pin your dependencies. 3. Try to
update dependencies. @hynek
1. Have tests. 2. Pin your dependencies. 3. Try to
update dependencies. 4. See if tests still pass. @hynek
1. Have tests. 2. Pin your dependencies. 3. Try to
update dependencies. 4. See if tests still pass. 5. GOTO 3 @hynek
Almost nobody does SemVer correctly. @hynek
https://0ver.org @hynek
A concept that most people get wrong is not a
useful concept for most people. @hynek
SemVer is a poor choice for most projects. @hynek
Acceptance @hynek
@hynek
Calendar Versioning @hynek
• Toyota 2020 Yaris • pip 20.0.2 • Ubuntu 20.04
• certifi 2020.4.5.1 @hynek
Takeaways @hynek
Takeaways •Don’t believe the promises of SemVer. @hynek
Takeaways •Don’t believe the promises of SemVer. •Don’t do SemVer
if you’re afraid to increment major. @hynek
Takeaways •Don’t believe the promises of SemVer. •Don’t do SemVer
if you’re afraid to increment major. •Try CalVer! @hynek
@hynek CalVer.org vrmd.de