Karl Heinz Marbaise (he/him)Dec 15, 2022
@ASFMavenProject @theasf
The Apache Maven team is pleased to announce the release of the Apache Maven 4.0.0-alpha-3. (Release Notes: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12316922&version=12352443) Download: https://dlcdn.apache.org/maven/maven-4/4.0.0-alpha-3/
Release Notes - ASF JIRA

Show threadBuZZ-dEE ☮️ 🇺🇦 🇪🇺 🇩🇪Dec 16, 2022
@khmarbaise @theasf why #Maven does not have a simple solution to install a dependency from the command line like e.g. #npm install which adds it to the pom.xml ? #pomxml #pom
Show threadJohn SDec 16, 2022

@buzzdee @khmarbaise @theasf I am not quite following what you are wanting. If you are just wanting to download an artifact to your local repo look at the command:

mvn dependency:get -Dartifact=groupId:artifactId:version -DrepoUrl=https://repo.maven.apache.org/maven2/

This does not modify pom.xml files.

Central Repository:

Show threadBuZZ-dEE ☮️ 🇺🇦 🇪🇺 🇩🇪Dec 16, 2022
@john_s @khmarbaise @theasf I would like to have a simple command to add a dependency to a #Java #Maven project, which also adds it to the pom.xml #pom #pomxml The example command you provided seems long, complicated and hard to remember to me. I would like to have something like this: `mvn install groupId.artefactId` or `mvn add groupId.artefactId` which installs the newest stable release. If you need a special version e.g. `mvn install / add groupId.artefactId.version`
Show threadKarl Heinz Marbaise (he/him)Dec 16, 2022
@buzzdee @john_s @theasf Based on that arises the question: "What is the newest stable release" ? (based on which criteria?)
Show threadBuZZ-dEE ☮️ 🇺🇦 🇪🇺 🇩🇪Dec 16, 2022
@khmarbaise @john_s @theasf #npm uses #SemanticVersioning #semver https://semver.org/ but I think could be defined by #Maven
Semantic Versioning 2.0.0

Semantic Versioning spec and website

Semantic Versioning
Show threadKarl Heinz Marbaise (he/him)Dec 16, 2022
@buzzdee @john_s @theasf SemVer only defines the versioning schema but not what a stable version is or not..and no it can not be defined by Maven because it's the task/definition of the authors of libs/tools.
Show threadBuZZ-dEE ☮️ 🇺🇦 🇪🇺 🇩🇪Dec 16, 2022
@khmarbaise @john_s @theasf this is not an important point to me, then use the newest version. My point is it would be great if #Maven would provide simple commands
Show threadKarl Heinz Marbaise (he/him)Dec 16, 2022
@buzzdee @john_s @theasf If you like to have such commands what about contributing to Maven or create such a tool(s) for getting newest/stable version. Also things like dependabot/renovate or alike already exist...(see on GitHub or alike; versions-maven-plugin; dependency check in IntelliJ plugin) etc.
Show threadBuZZ-dEE ☮️ 🇺🇦 🇪🇺 🇩🇪
@khmarbaise @john_s @theasf I don't understand why you recommend third party tools like #dependabot etc. If I use 'yarn add graphql` it installs v16.6.0 to the package.json, which seems to be the newest stable version to me
https://www.npmjs.com/package/graphql https://github.com/graphql/graphql-js/releases so this should be technically also possible for #Maven #packagejson #yarn
graphql

A Query Language and Runtime which can target any service.. Latest version: 16.6.0, last published: 4 months ago. Start using graphql in your project by running `npm i graphql`. There are 11819 other projects in the npm registry using graphql.

npm
Dec 16, 2022 at 3:01pmWeb
Show threadKarl Heinz Marbaise (he/him)Dec 16, 2022
@buzzdee @john_s @theasf Three reasons. 1. reinventing the wheel. 2. I have not doubted that it is technical possible (but for example the subject about newest vs. stable version will be very tricky)... 3. What is the win related to the effort to write/enhance tools?
From my point of view I use my IDE or renovate/dependabot to handle that. That does not mean such kind of enhancement/tools would be useful. If you like start such tools/contribute etc. why not..