When you're talking to an open source dev, just remember that they are literally giving you their time for free, and they are people who don't like to be treated poorly.
Edit: Just to be clear, I don’t mean any ill will toward the guy. He’s frustrated and he’s just taking it out in the wrong venue at the wrong people, but that doesn’t mean he’s a bad person.
Edit 2: The reinstalling he’s talking about is NPM. So just running npm install. It’s because he tried removing the node_modules directory, which is a reasonable thing to do, but it means you need to reinstall the modules with that command.
I agree with OP, but the whole confrontation could’ve been avoided in the first place if all dependencies were spelled out to the letter in the form of a flake.nix with the latest accompanying flake.lock file.
It’s a frontend JavaScript UI library. I can’t control what other dependencies people install alongside my library, or even whether they follow my library’s dependency list.
Yes, and I have a package.json that lists dependencies and the versions I test with. You can force a different version though. I don’t think that’s what happened here. I’m guessing it’s a version of some dependency that should work, because it was released as a minor version within the range I specified, but doesn’t actually work.
It could also be an issue with the build system/bundler, which I can’t really control either.
It's way worse on C and it's family. I still have nightmares with undocumented embedded dependencies that are so intertwined with the codebase that make JS look like a godsend.
As someone who is out of the loop a lot, what is it about Docker that you hate? What do you use instead?
It took me weeks to wrap my head around it, but now I enjoy being able to spin something up without too much work. At work we have the whole CICD thing with Docker and K8, but I am pretty far removed from what they have to do in the run files.
What other kinds of workflows do people use these days?
Don't be the guy who ignores reports that your software doesn't work with new dependency versions just because you can't be arsed to test with anything else even if the report looks like a legitimate problem.
That was less directed at you and more at the idea that just pinning versions solves the issue which is unfortunately very frequent among proponents of things like vendoring, nix, Docker containers and similar tools that allow a project to stay on an old version for potentially years. Sorry if that came across that way.