Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
On the Meaning of Version Numbers
Search
Hynek Schlawack
April 25, 2020
0
270
On the Meaning of Version Numbers
Hynek Schlawack
April 25, 2020
Tweet
Share
More Decks by Hynek Schlawack
See All by Hynek Schlawack
Classy Abstractions @ Python Web Conf
hynek
0
160
Maintaining a Python Project When It’s Not Your Job
hynek
1
2.3k
How to Write Deployment-friendly Applications
hynek
0
2.5k
Solid Snakes or: How to Take 5 Weeks of Vacation
hynek
2
5.7k
Get Instrumented: How Prometheus Can Unify Your Metrics
hynek
4
11k
Beyond grep – PyCon JP
hynek
1
3.2k
Beyond grep – EuroPython Edition
hynek
1
10k
Beyond grep: Practical Logging and Metrics
hynek
3
1.2k
The Sorry State of SSL @ EuroPython 2014
hynek
1
360
Featured
See All Featured
Being A Developer After 40
akosma
72
580k
What's new in Ruby 2.0
geeforr
338
31k
For a Future-Friendly Web
brad_frost
173
9.2k
Fontdeck: Realign not Redesign
paulrobertlloyd
79
5.1k
How to name files
jennybc
67
96k
Robots, Beer and Maslow
schacon
PRO
157
8.1k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
20
7.2k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
149
45k
Fireside Chat
paigeccino
25
2.8k
Building Your Own Lightsaber
phodgson
101
5.9k
Optimizing for Happiness
mojombo
373
69k
Adopting Sorbet at Scale
ufuk
71
8.8k
Transcript
Hynek Schlawack On the Meaning of Version Numbers @hynek
Semantic Versioning @hynek
1.2.3 micro @hynek
1.2.3 minor micro @hynek
1.2.3 major minor micro @hynek
SemVer is a poor choice for most projects. @hynek
SemVer doesn’t deliver on its promises. @hynek
“I can choose to only get bugfixes.” https://xkcd.com/1172/ @hynek Hyrum’s
Law
Very few open source projects have the resources to maintain
more than one release branch (properly). “I can choose to only get bugfixes.” @hynek
If You Pin Major Version In Your Applications @hyne
-No security updates. If You Pin Major Version In Your
Applications @hyne
-No security updates. -The longer you wait, the harder it
gets. If You Pin Major Version In Your Applications @hyne
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App <2.0
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App <2.0 2.0.0
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App <2.0 other- pkg >2.0 2.0.0
@hynek If You Pin Major Version In Your Public Package
your-pkg urllib3 1.25.9 User’s App <2.0 other- pkg >2.0 Conflict! 2.0.0
@hynek
1. Have tests. @hynek
1. Have tests. 2. Pin your dependencies. @hynek
1. Have tests. 2. Pin your dependencies. 3. Try to
update dependencies. @hynek
1. Have tests. 2. Pin your dependencies. 3. Try to
update dependencies. 4. See if tests still pass. @hynek
1. Have tests. 2. Pin your dependencies. 3. Try to
update dependencies. 4. See if tests still pass. 5. GOTO 3 @hynek
Almost nobody does SemVer correctly. @hynek
https://0ver.org @hynek
A concept that most people get wrong is not a
useful concept for most people. @hynek
SemVer is a poor choice for most projects. @hynek
Acceptance @hynek
@hynek
Calendar Versioning @hynek
• Toyota 2020 Yaris • pip 20.0.2 • Ubuntu 20.04
• certifi 2020.4.5.1 @hynek
Takeaways @hynek
Takeaways •Don’t believe the promises of SemVer. @hynek
Takeaways •Don’t believe the promises of SemVer. •Don’t do SemVer
if you’re afraid to increment major. @hynek
Takeaways •Don’t believe the promises of SemVer. •Don’t do SemVer
if you’re afraid to increment major. •Try CalVer! @hynek
@hynek CalVer.org vrmd.de