Upgrade to Pro — share decks privately, control downloads, hide ads and more …

The New Era of Go Package Management

sam boyer
July 14, 2017
Technology
0
120

The New Era of Go Package Management

Closing keynote of Gophercon 2017.

sam boyer

July 14, 2017
Tweet

Other Decks in Technology

See All in Technology
AWSの生成AIサービス Amazon Bedrock入門!(2025年1月版)
minorun365
PRO
7
410
CDKのコードレビューを楽にするパッケージcdk-mentorを作ってみた/cdk-mentor
tomoki10
0
100
OPENLOGI Company Profile
hr01
0
58k
2025年の挑戦 コーポレートエンジニアの技術広報/techpr5
nishiuma
0
110
商品レコメンドでのexplicit negative feedbackの活用
alpicola
1
180
ZOZOTOWN の推薦における KPI モニタリング/KPI monitoring for ZOZOTOWN recommendations
rayuron
1
1.1k
Bring Your Own Container: When Containers Turn the Key to EDR Bypass/byoc-avtokyo2024
tkmru
0
760
知っててうれしい SQL について
greendrop
0
110
🌏丸い地球を効率的に平たくする 〜🗺️地図の幾何学とWeb地図技術〜
syotasasaki593876
0
120
rootful・rootless・privilegedコンテナの違い/rootful_rootless_privileged_container_difference
moz_sec_
0
120
OCI技術資料 : ファイル・ストレージ 概要
ocise
3
12k
20240513 - 框裡框外_文學院學生如何在AI世代安身立命 @ 淡江大學
dpys
0
640

Featured

See All Featured
Producing Creativity
orderedlist
PRO
343
39k
Learning to Love Humans: Emotional Interface Design
aarron
274
40k
Large-scale JavaScript Application Architecture
addyosmani
510
110k
Statistics for Hackers
jakevdp
797
220k
Measuring & Analyzing Core Web Vitals
bluesmoon
5
200
RailsConf 2023
tenderlove
29
960
Code Reviewing Like a Champion
maltzj
521
39k
The Invisible Side of Design
smashingmag
299
50k
Stop Working from a Prison Cell
hatefulcrawdad
267
20k
It's Worth the Effort
3n
183
28k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
132
33k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
49
2.2k

Transcript

  1. @sdboyer The New Era of Go Package Management sam boyer

  2. @sdboyer 1. We write code

  3. @sdboyer 2. We use others’ code

  4. @sdboyer 3. ow

  5. @sdboyer Package (dependency) management matters

  6. @sdboyer No, like…more than that

  7. @sdboyer Tools -> Social Systems

  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None

  15. @sdboyer Roots of the problem • GOPATH allows only one

    version • No reproducibility • Releases, ~pointless • Updates, a crapshoot
  16. None

  17. @sdboyer Rise of the tools • 2013: Godep, gom, et

    al. - 2013 • 2014: glide, gopkg.in, et al. - 2014 • 2015: gb, govendor, et al. - 2015

  18. @sdboyer vendor/ on the scene • Go 1.5: vendor/ added,

    off by default (Aug, 2015) • Go 1.6: vendor/ on by default (Feb, 2016) • Go 1.7: vendor/ always on (Aug, 2016)
  19. None

  20. @sdboyer godep glide gb govendor (et al.)

  21. @sdboyer github.com/golang/dep

  22. @sdboyer

  23. @sdboyer dep fundamentals • Borrows from others, but is tailored

    to Go • Imports are queen • Two-file system: Gopkg.toml, Gopkg.lock • Project-oriented • Semver tagging • vendor/-centric - (almost) no GOPATH

  24. @sdboyer dep status dep init dep ensure

  25. @sdboyer godep glide gb govendor (et al.) GOPATH dep

  26. @sdboyer dep status dep init dep ensure

  27. @sdboyer ensure keeps states in sync Project Code (imports) Gopkg.toml

    Gopkg.lock Deps (vendor)

  28. @sdboyer “Sync-based” tool

  29. None

  30. @sdboyer “Hey dep, ensure everything’s shipshape, kthx”

  31. @sdboyer

  32. @sdboyer

  33. @sdboyer ) dep dep go

  34. @sdboyer ) dep go

  35. None

  36. @sdboyer Key insights from dep • Two-file system • Imports

    are queen • Still sync-based • Semver tagging • vendor/, sorta

  37. @sdboyer TODOs • Multi-project workflow • Semver suggestion tool •

    Registries • Editor integration patterns • Security model • Performance! • Better failure feedback • Private/enterprise patterns

  38. @sdboyer TODOs…for YOU • Tag your projects with semver •

    Convert projects to dep (yes, it’s ready!) • Maybe jump in and contribute to dep - word is, we’re super friendly! • Hackathon, tomorrow! • Updates: sdboyer.io/dep-status

  39. THE SOFTWARE IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY

    KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND… The MIT License
  40. None