Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Question: Packagist (and thus dependabot) lists a version 5 release but GitHub lists 4.0.4 as latest release. Is version 5 truly a release? #1168

Open
apotek opened this issue Sep 12, 2024 · 0 comments
Open

Question: Packagist (and thus dependabot) lists a version 5 release but GitHub lists 4.0.4 as latest release. Is version 5 truly a release? #1168

apotek opened this issue Sep 12, 2024 · 0 comments

Comments

@apotek
Copy link

apotek commented Sep 12, 2024
edited
Loading

Question

I have a dependabot merge request in my repo (which includes robo via composer and thank you) that wants me to update to robo v5.

Packagist has a v5 package: https://packagist.org/packages/consolidation/robo#5.0.0
But GitHub does not. It's latest release is v4.0.4

I would expect a packagist package to be designated as a release in GitHub not just as a tag. Does the omission of a GitHub v5 official release mean that v5 is still being tested/considered for release? Is it an oversight?

Do you recommend updating to version 5? And if so, why would there not be a corresponding GitHub release?

There is no release note/changelog on the version 5 tag, but I see the README mentions it as stable and changelog does include some notes.

Thank you so much.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@apotek