Allow me to pin/lock package reference to the certain version/version range, so it's impossible to update the version via CLI or UI #14042
Comments
|
There are a few mechanisms that already exist that can help with this scenario.
Note that neither of these are a guarantee that the version number can't be incremented, so you'll want to rely on source control and pull request reviews to help prevent changes to the referenced package version, but they should add an additional element of protection against accidental changes. You can also consider a source control policy or action to prevent changes to a particular file unless extra approvals are provided. Would these solutions solve the issue? If not, what other requirements would a lock mechanism in NuGet fulfill and what would be the proposed functionality? |
jebriede
added
WaitingForCustomer
|
@jebriede , hm... versions range seem to work, thanks. Yet I had an impression that till recently UI will still show me the possibility of update. Just an off-topic question: How do I find out that new, major version update is available, if I specified a range? I mean, when I am authoring NuGet packages I prefer to use version ranges: When the new version of the dependency is released, I'd like to see it and run tests to ensure my library supports it, so I can increase |
microsoft-github-policy-service
bot
added
WaitingForClientTeam
jeffkl
removed
the
WaitingForClientTeam
NuGet Product(s) Involved
dotnet.exe, Visual Studio Package Management UI, Visual Studio Package Manager Console, NuGet.exe
The Elevator Pitch
After FluentAssertions library changed their license in v8, I want to have a lock feature, so package of v7 is not upgraded to v8 accidentally.
Anyone who attempts to update the version should get the error with some message I provide to explain the reason for locking the version.
Not being able to lock the version has legal and financial implications.
Additional Context and Details
No response
The text was updated successfully, but these errors were encountered: