[jira] [Work logged] (BEAM-4606) Upper bound for pytz dependency

Tue, 26 Jun 2018 16:54:22 -0700 


     [ 
https://issues.apache.org/jira/browse/BEAM-4606?focusedWorklogId=116197&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-116197
 ]

ASF GitHub Bot logged work on BEAM-4606:
----------------------------------------

                Author: ASF GitHub Bot
            Created on: 26/Jun/18 23:53
            Start Date: 26/Jun/18 23:53
    Worklog Time Spent: 10m 
      Work Description: udim commented on a change in pull request #5751: 
[BEAM-4606] Pin pytz version 
URL: https://github.com/apache/beam/pull/5751#discussion_r198330929
 
 

 ##########
 File path: sdks/python/setup.py
 ##########
 @@ -105,7 +105,7 @@ def get_version():
     'oauth2client>=2.0.1,<5',
     # grpcio 1.8.1 and above requires protobuf 3.5.0.post1.
     'protobuf>=3.5.0.post1,<4',
-    'pytz>=2018.3',
+    'pytz==2018.4',
 
 Review comment:
   Do you think `==2018.4` will break existing users when they upgrade to Beam 
2.6.0?
   How do we determine the lower bound for pytz versions?

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org


Issue Time Tracking
-------------------

    Worklog Id:     (was: 116197)
    Time Spent: 40m  (was: 0.5h)

> Upper bound for pytz dependency
> -------------------------------
>
>                 Key: BEAM-4606
>                 URL: https://issues.apache.org/jira/browse/BEAM-4606
>             Project: Beam
>          Issue Type: Improvement
>          Components: sdk-py-core
>            Reporter: Ahmet Altay
>            Assignee: Udi Meiri
>            Priority: Major
>          Time Spent: 40m
>  Remaining Estimate: 0h
>
> Do we need an upper bound for the pytz dependency? 
> ([https://github.com/apache/beam/blob/release-2.5.0/sdks/python/setup.py#L108)]
>  We typically have upper bounds, in order to avoid future breakages due to a 
> possibility of breaking/backward incompatible change of that depepdency.
> Good practice is to upper bound either at known version, or next major 
> version. Do we need an exception for pytz because it does not seem to be 
> following semantic versioning?
> cc: [~yifanzou] Is this something dependency notifier can warn on? Dependency 
> without upper version bounds.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Reply via email to