Skip to content

Use versioned PURL as the canonical identifier in env #404

Description

Currently only index projects use PURL as their canonical identifier in lockfile/env. But even they use unversioned PURL, so if multiple versions of the same project are present, dependency graph cannot be unambiguosly constructed from the information provided.

Non-index projects that contain publisher/name complying with our rules don't use PURL as their canonical identifier (unless they were added using this identifier). PURL results in much nicer paths for the environment, so it would be nice to use the PURL there. Lockfile cannot in general use PURLs as canonical identifiers in such cases, since it needs to preserve
lockfile<->.project.json mapping.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions