Hi, Sorry for the delay,
On Sun, 22 Sep 2024 13:21:30 -0400 Superfly Johnson <superfly.john...@yahoo.com> wrote: > The Azure SDK for Go > (https://github.com/Azure/azure-sdk-for-go/releases) has many > sub-packages within the same directory and the guix import method > won't work directly. I think the best solution for packaging the > requirements for rclone would be to make the sub-packages individual > guix packages using the url-fetch method instead of the git method. > Each also depends on several sub-packages. I had a similar issue with the matterbridge package which has about 500 dependencies that are not in Guix. I verified most of the licenses for the dependencies with a combination of recursive guix import and manually looking for the ones that weren't detected. And given the number of dependencies I was told that it was okay to have them bundled in. As I understand, packaging too many dependencies would create complications for the maintenance. Though the current situation is far from ideal as checking the license of ~500 dependencies is also very time consuming and if problems appears in newer releases it would be difficult to detect them. Also note that we didn't know about the dependencies issues of matterbridge when it got in, so maybe it played a role in the decisions that was taken at the time. Denis.
pgprjMq85h23z.pgp
Description: OpenPGP digital signature
