pkl/pkl-core at d4dacd5a0f9fc17428fb01dce890c895a10f39f5 - pkl

mirror of https://github.com/apple/pkl.git synced 2026-05-04 22:24:43 +02:00

Files

Daniel Chao 07c68239b9 Remove lockfiles, manage Gradle dependencies with Dependabot (#1535 )

Dependabot currently does not update lockfiles in multi-module projects
(see https://github.com/dependabot/dependabot-core/issues/14633)

To work around this issue, we will simply remove our lockfiles, and
change our version catalog to use fully specified versions.
The removal of lockfiles introduces two issues:

1. It is less visible what our dependency graph is
2. Our builds are potentially non-reproducible

To work around this, two mitigations are in place:

1. Enable `failOnDynamicVersions()`, which causes Gradle to fail the
build if any dependencies declare a version range
2. Enable GitHub dependency submission, which provides insight into the
project SBOM

2026-04-20 09:29:33 -07:00

src

Fix bug where reusing a pklbinary#Renderer could result in incorrect output (#1525 )

2026-04-15 23:12:36 -07:00

pkl-core.gradle.kts

Gradle: Replace legacy buildSrc mechanism with included build (#1524 )

2026-04-15 21:37:10 -07:00

README.adoc

Initial commit

2024-02-01 14:00:22 -08:00

README.adoc

Core implementation of the Pkl language. Includes Java APIs for embedding the
language into JVM applications, and for building libraries and tools on top of
the language.