►
From YouTube: Cartographer Office Hours - April 04, 2022
Description
00:00 Intro
01:17 Welcome new faces
06:06 Simplify Runnable usage RFC
25:24 Maven support RFC
For more details please refer to the Office Hours meeting notes: https://docs.google.com/document/d/1ImIh7qBrOLOvGMCzY6AURhE-a68IE9_EbCf0g5s18vc/edit?usp=sharing
A
All
right,
yeah
feel
free
to
add
yourself
to
that
in
this
list.
I'll
share
my
screen
real,
quick
here
and
all
right.
I
see
a
couple
of
new
faces.
A
B
B
A
C
A
C
Yes,
hi,
my
name
is
kavitha.
I
am
in
vishal's
team,
andy,
I'm
an
engineer
there
we're
the
team
is
planning
to
work
closely
with
cartographers.
So
I'm
like
interested
to
be
here.
A
D
I
can
go
next,
my
name
is
jacqueline.
I
work
with
cavita
and
vishal,
and
maybe
a
few
people
were
not
here
today
we're
on
the
same
team.
Okay,.
A
All
right,
I
see
here
yeah
many
of
you,
I
I
I
wasn't
like
you
know.
A
week
ago
I
had
some
issues,
wasn't
able
to
attend
so
I'll
just
mention
here
folks
who
are
new
in
the
session,
at
least
for
me
darshan.
A
Is
this
your
first
time?
If
that
that's
the
case,
could
you
briefly
please
introduce
yourself.
E
Hey
my
name
is
dir,
I'm
also
part
of
the
integrations
team.
A
F
Hey
there
oh
yeah,
I'm
at
I'm
adam
at
vmware,
I'm
work,
I'm
work,
I'm
the
product
manager
on
the
team
that
dirtway
is
working
with
integrations
team.
G
Hi,
I'm
on
adam
dawson's
team
staff,
engineer
with
the
artifact
integrity
team
and
I'm
here
to
help
with
integrations
as
well.
A
Cool
yeah
welcome,
yeah.
We
are
out
outnumbered
yeah
for
all
the
team,
just
joining
feel
free
to
add
your
questions.
Discussion
topics
to
the
agenda
if,
besides
the
rfc
discussion,
is
there
something
that
you
like
to
see
here,
but
most
of
the
times
the
rfc
discussion
takes
the
entire
session.
So,
okay,
no
problem.
So
in
the
last
session
I
see
we
had
rfc.
A
A
A
A
Okay.
So
in
last
session
there
was
a
new
rfc
introduced,
simplified
runable
usage.
It's
been
sitting
in
review
for
a
couple
of
weeks,
I
believe
so.
I
will
encourage
anyone
there
to
provide
your
comments.
If
there
is
any
comment-
or
if
you
like
to
discuss
this
right
now,
we
could
give
it
a
space.
Is
there
any
comment
around
the
specific
rfc.
H
H
So
so
yeah
the
I
was
here
to
present
this
three
weeks
ago
and
then
two
weeks
ago
there
was
discussion
about
it
and
I
wasn't
it
wasn't
here,
and
so
I
wanted
to
talk
a
little
bit
about
about
those
as
well
as
point
to
another
rrc.
It's
about
this,
so
yeah.
I
I
think
the
one
question
that
came
up
was
simply:
should
we
do
this
like
do
we
need
to
simplify
runnable?
H
I
agree
yes
in
the
rfc,
there
are,
like
four
bullet
points,
to
talk
about
reasons
why
some
of
it
just
comes
from
my
experience
of
writing,
tutorials
and
stuff
and
documentation
on
like
how
do
you
use
cartographer
and
runnable's
like
really
complicated,
and
its
use
case,
which
is
essentially
use
tecton
with
cartographer,
is
pretty
key
like
it's
something
that
we
expect.
H
Most
users
are
going
to
have
to
do
at
some
point,
so
we
should
simplify
the
things
that
people
have
to
do
really
often,
as
also
point
out
that
when
I
you
know
linked
to
this
issue
in
the
cartographer
kubernetes
slack,
that
cora,
who
is
a
vmware
developer,
advocate,
responded
and
is
like.
Yes,
please
do
this,
so
our
developer
advocates
are
saying
that
we
should
do.
H
It
are
the
folks
that
are
you
know
the
individual
who's
taken
on
the
most
responsibility
for
writing
tutorial
things
for
users
me
saying
that
we
should
do
this.
So
yes,
I
think
we
should
do
this.
Another
question
is:
should
we
be
stamping
out
a
runnable
at
all,
or
should
we
just
deprecate
runable
and
just
have
this
be
a
responsibility
of
you
know
the
workload
controller.
Frankly
personally,
I
would
prefer
that,
but
I
think
that
that
ship
has
sailed.
H
I
don't
see
an
advocate
on
the
steering
committee
that
would
that
would
carry
that
proposal.
If
there
is
a
member
of
the
steering
committee
that
would
like
to
step
up
and
say
like
yes,
let's,
let's
get
rid
of
burnable,
then
like
yeah,
I'm
that'd
be
great,
but
until
then
I
think
what
we
should
do
is
the
approach
that
is
laid
out
here,
which
is
let's
stamp.
H
Let's
give
users
a
way
to
easily
just
with
with
one
field
indicate
this
resource
is
immutable
and
and
and
we'll
just
create
a
runnable
and
that
and
that
runnable
architecture
will
just
work.
H
H
There
are
some
complicated
questions
around.
Should
we
have
a
cluster
run
template
at
all?
Can
we
get
rid
of
it?
H
There
are
questions
of,
should
we
have
if
we
or
should
we
keep
it
and
do
this
other
template
like
inline
templating,
or
should
we
just
do
like
the
inline
templating
itself,
and
I
think
you
know
those
are
all
interesting
conversations,
but
I
don't
think
that
they're
critical
for
us
to
move
forward
with
let's
stamp
out
this
runnable
object
like
we've
got
runable
and
I
think
it's
totally
reasonable
for
us
to
say,
like,
as
we
have
cluster
on
template
now,
let's
just
make
sure
that
we
stamp
out
a
cluster
on
template
and,
if
later,
there's
a
simpler
way
to
do
it.
H
We
just
use
that
simplified
manner
so
later
in
the
session.
H
If
we
get
to
it-
and
I
would
be
surprised
if
we
do
there's
a
new
rfc
for
discussing
changing
the
runnable
controller
and
that
template
ref,
that
cluster
run
template
thing.
H
But
my
hope
is
that
by
separating
those
questions
out
that
can
alleviate
the
only
sticking
point
that
I
s,
that
that
has,
I
think,
that's
still
outstanding
in
text
on
this
pull
request.
Does
that
so
I'll?
Stop
there.
I
On
the,
I
think
this
went
through
a
whole
bunch
of
different.
You
know
parts
of
solving
this
problem
on
the
you
know
specifically
on
this.
Simplifying
by
getting
rid
of
a
cluster,
run,
template
right,
and
so
you
just
have
runable
and
the
template
is
embedded
and
runnable
that
design
was
actually
the
original,
like
proposed
version
of
the
architecture
was
like
very
early
on.
It
was
the
like
original
thing
that
was
kind
of
sketched
out
was
like.
I
Could
we
have
a
resource
that
you
know
gets
templated
and
then
because
the
higher
level
template
its
parameters,
change?
It
changes
the
you
know,
inner
resources,
values
which
causes
it
to.
You
know,
register
a
change
and
the
reason
we
didn't
go
with
that
architecture
wasn't
because
we
felt
like
it
was
better
to
have
reusability
of
the
run,
template
or
anything
like
that.
It
was
mostly,
I
think,
cereal.
You
might
remember
this
better
than
I
do.
It
was
mostly
just
because
it
was
hard
to
manage
it.
I
Wasn't
just
having
two
layers
of
templating
and
needing
some
kind
of
escape.
It
was
like
the
there
were
some
problems
changing
as
a
long
time
ago.
So
it's
hard
for
me
to
remember,
like
there
were
some
problems,
changing
the
inner
thing
from
a
templating
language
if
it
was
also
a
template
and
then
having
those
changes
propagate
that
there
was
like
a
really
specific
kind
of
you
know
technical
thing
we
ran
into
I'm
wondering
if
sierra
you
remember
some
of
more
of
those
details,
because
I
remember
we
had
this
conversation.
H
Really
quickly
because
I
feel
like
an
anti-goal
to
what
I
was
just
saying
has
occurred,
which
is,
I
would
like
to
move
forward
with
the
proposal
to
simplify
the
user
interface
of
just
getting
a
runable
from
the
question
of
like
this
cluster
run.
Templating
stuff.
Oh.
H
Yeah
and
and
then
like
later
there's
this
other
rrc
and
like
we
can
totally
jump
into
that
and
discuss
that,
but
mostly
I'd
like
to
just
like
get
approval
on
this
one.
First.
A
A
All
right,
yeah
and
okay
yeah,
it's
pretty
the
rashid
comment.
The
chat
just
make
sure
to
capture
any
new
updates,
any
change
of
direction
in
the
new
rfc,
which
is
here.
I
believe
this
one
yeah
this
one,
all
right,
scott,
please,
let's
go.
J
Presumably
it
would
require
creating
reconcilers
for
each
of
the
the
cluster
template
resources
and
then,
if
they
are
labeled
as
immutable,
then
creating
the
cluster
run
template
resource
then
reflecting
that
name
back
so
that
other
people
then
can
know
how
to
use
it
like
so
like
that
introduces
a
bunch
of
new
controllers
in
the
system
which
isn't
necessarily
a
problem,
but,
like
those
resources,
aren't
controlled
today,.
H
Yes,
so
there
are
there's
a
primary
proposal
and
a
secondary
proposal.
The
primary
proposal
is
just
that.
We
use
a
essentially
a
singleton
pattern,
which
is
when
a
workload
pairs
with
a
template
with
a
supply
chain
that
has
a
template
that
says,
lifecycle
immutable
where
a
runnable
will
have
to
be
stamped
out
that
two
things
would
occur.
Both
the
runnable
would
be
created
and
also
a
cartographer
would,
in
that
reconcile
loop
would
check
to
make
sure
that
a
cluster
run
template
had
been
created.
H
That
would
match
with
that
runable,
runnable
and
yeah,
so
the
first
workload
would
involve,
would
kick
off
the
creation
of
that
cluster
run
template
and
every
successive
workload
would
would
check
and
see.
Like
oh
yep,
that
exists,
it's
it
has
the
the
spec
that
I
expected
and
would
be
a
no
op,
and
then
it
would
just
create
the
runnable.
H
The
second
approach
would
be,
as
you
just
said,
we
would
have
to
create
a
new
controller
that
would
reconcile
the
four
temp
or
any
supply
chain
deliverable
template
type,
and
that
would
just
be
for
the
purpose
of
creating
a
cluster
run.
Template
from
a
cluster,
for
example,
a
cluster
source
template
that
was
for
an
immutable
resource.
H
K
So
maybe
that
means
like
that
is
the
way
we
should
go,
although
it
does
seem
like
no
individual
use
case
was
like
worth
it
enough
to
do
it
like
in
our
blueprints
rfc,
which
maybe
we'll
get
to
talking
about
like
one
of
the
nice
things
there
is
that
if
everything
is
just
a
blueprint,
then,
like
everything
already
has
a
reconciler,
so
I
think
all
that
to
say
I
think,
for
now
I
would
lean
towards
not
adding
reconcilers
for
all
of
them
because
of
the
overhead
and,
like
maybe
there's
proposed
architecture,
changes
that
we're
thinking
about.
L
Do
you
think
that
martin
listed.
L
L
I
know
it's
hard
to
kind
of
predict.
I'm
just
trying
to
wonder
like.
Is
there
an
order
thing
here,
because
there
is
the
the
blueprint
discussion?
Rfc,
that's
kind
of
out
there
and
being
discussed,
I'm
just
wondering
about
an
ordering
thing.
Does
anybody
do
you
might
have
a
feel
of
that
with
anybody
else.
K
Personally,
I
wouldn't
want
to
block
either
one
on
the
other
and
think
we
can
like
the
singleton.
One
singleton
approach
is
easier
and
simple
yeah,
I
think
more
simple
from
the
start,
and
if
we
get
blueprints
we
can.
We
can
kind
of
extract
that
logic,
but
I
don't
think
it's
necessary
to
block
either
one
of
them
personally.
J
It
might
be
conceptually
simpler,
but
it's
also
prone
to
race
conditions.
If
you
ever
have
more
than
one
workload
being
reconciled
concurrently.
H
H
H
H
J
The
actual
behavior
at
runtime
like
because,
like
for
all
these
resources
like
these
are
cluster
scope,
resources,
so
you're
already
operating
in
a
single
global
namespace,
so
that
for
every
new
resource,
you're
creating
like
you,
have
to
come
up
with
a
unique
name
so
like
if
you're
basing
it
off
of
the
name
of
the
the
cluster
template.
That's
being
that's
immutable
that
you're,
basically,
then
deriving
the
run
template
from
then
like
those
that
have
potential
of
naming
conflicts
with
like
either
existing
resources
or
just
other
resource
happenings
to
exist
so
like.
H
J
J
If
you're
going
to
use
generated
name,
then
you
run
the
risk
and
like
maybe
this
isn't
a
big
risk.
But
you
could
have
two
resources
from
two
concurrent
reconciliations
of
the
same
supply
chain
that
both
are
trying
to
stand
by
the
same
resource,
seeing
that
there
isn't
an
existing
resource
and
trying
to
create
it
and
they
will
succeed.
Because
now
you
don't
have
a
unique
name.
J
H
All
updated
in
sequentially.
J
H
H
H
I
I
think
there's
a
question
here
of
you
know.
Maybe
you
could
make
this
work,
but
do
you
really
want
to
like
you
know,
is
it
maybe
worth
resolving
the
you
know
to
keep
the
architecture
clean
right,
resolving
the
underlying
issue
of
having
to
have
this
weird
shared
clusters
code
resource
right
before
we
address
the
you
know,
reusability
part,
but
simplification
of
the
random
part.
I
mean
sorry.
H
M
I
think
you
had
a
few
observations
at
the
start
that
you
wanted
to
address,
and
one
of
them
was
do
we
want
to
do
this
versus
no,
and
I
don't
think
you're
getting
any
resistance
to
do.
We
want
to
do
this,
which
is
a
positive
here
right,
but
it
sounds
like
there
are
some
design
factors
that
actually
need
to
be
hashed
out.
M
A
A
Thank
you
yeah
I
free
to.
We
will
need
probably
a
separate
conversation
for
this
one,
and
also
please
continue
conversation.
I
think
as
long
as
possible.
So
next
up
by
public
request,
will
be
the
specific
rfc
around
now
in
support.
N
I
can
talk
to
it.
Basically,
what
we're
proposing
is
that
we
modify
the
owner
to
be
able
to
support
maven
and
artifactory
repositories.
N
N
And
I
guess
I'll
just
like
open
up
the
floor,
I
haven't.
I
have
not
updated
the
rfc
to
include
the
changes
that
have
been
suggested
just
because
I
wanted
to
hear
if
anyone
had
any
additional
thoughts
today.
L
Yeah,
I
can
maybe
start
something
off
that
helps
I
mean
I
think
there
was
some
some
discussions
and
that
there
was
really
the
aim
of
integrating
with
like
an
artifact
repository
to
be
able
to
consume.
You
know
watch
for
new
jars
or
war
files
that
are
built
from
an
external
system
that
will
probably
start
with
jars,
but
then
going
forward,
and
maybe
other
things,
maybe
other
artifacts,
maybe
helm,
charts
or
different
binaries,
ruby,
gems
or
go
binaries
various
other
things,
and
so
just
to
I
guess
you
know
one
of
the
early
questions.
L
We
were
kind
of
pondering
with
a
few
folks
on
around
here
and
he's
kind
of
expressed
in
this
pr
as
well
rfc
as
well
is
what
level?
What
does
that
ux
look
like,
potentially
to
somebody
configuring
that
workload?
Do
we
want
folks
to
be
able
to
have
to
you
know,
describe
what
that
artifact
is
in
that
workload?
Is
it
something
that
is
maybe
made
them
specific
and
then
extending
we
need
to
add
in
different.
You
know
different
support,
different
binary
types
going
forward.
L
Is
there
something
more
generic
that
could
be
done
potentially,
so
the
is
more
around
the
url,
possibly
unlikely,
but
he
was
more
just
asking
the
questions.
So
we've
got
a
data
record
to
check
that
we
can
come
back
and
we've
asked
that
question.
I
think
some
of
the
challenges
around
that
might
be
about
how
do
you
know
what
the
latest
version
something
is
like
with
maven
you
get
a
metadata
xml.
L
What
other
things
do
would
that
be
implementation
specific
between
different
artifact
repositories,
and
so
I
was
looking
down
on
that
and
I
think
there
was
a
fairly
good
consensus.
I
know
from
the
lots
of
folks
in
the
integration
folks
on
the
court
we're
thinking
more
around
initially
providing
support
for
like
specific
maven
and
extending
growing
that
out.
I
think
I've
got
to
feel
that's
where
the
thread
the
conversations
tend
to
has
tended
to
go
so
moving
away
from
like
a
generic
approach
to
more
of
a
artifact
specific
implementation,
yeah,
okay,.
M
So
rfc
is
already
very
implementation,
specific
for
maven
loading
in
an
artifact.
It's
assumed
to
be
at
the
moment.
It
says:
oh,
it's
maven,
and
that
means
that
you're
picking
up
something
that
is
going
to
be
exposed
as
a
maven
artifact
elsewhere.
It
doesn't
mean
that
there's
a
jaw
or
whatever
else
it
just
means
it's
coming
from
maven,
but
I
think
the
assumption
is
that
it's
going
to
be
of
a
type
that
you're
likely
to
pull
as
a
java
application.
L
L
You
know
I
guess
it
doesn't
have
to
answer
now,
but
in
the
back
of
our
minds,
I
guess
it's
just
having
the
thought
of
what
is
the
things?
Is
there
much
effort?
Do
things
look
terribly
different
for
different
artifact
types,
and
you
know
we
don't
have
to
really
consider
consider
implementation.
Now,
it's
more
just
have
that
in
the
back
of
my
mind
from
the
design
perspective,
what
where
those
lines
might
be
drawn.
So
I
think
that's
the
only
thing
I'd
say.
M
I
think
scott
made
a
suggestion
that
that
I
liked,
which
was
that
we
need
to
see
what
the
in
and
out
of
the
source
provider
would
look
like,
like
cartographer,
really
just
needs
to
support
what
the
input
needs
to
look
like
for
a
working
source
provider
for
a
maven
repository
and
then
and
then
we
need
to
work
out
what
for
users
of
that
source
repository,
we
need
to
work
out
what
a
supply
chain
would
look
like
for
supporting
that
particular
output
of
the
constrained
resource
that
that
source
source
provider
would
give
us.
J
Yeah,
I
I
definitely
think,
because
cartographer
itself
has
a
specific
knowledge
here.
It's
going
to
be
all
defined
on
what
the
actual
resources
the
supply
chain,
stamping
out,
look
like
so
like
in
general.
I
think
the
workload
should
sort
of
like
be
the
80
solution
for
sort
of
the
shape
of
things
that
need
to
get
stamped
out
by
a
supply
chain
so
like.
J
M
I
guess
my
concern
is
that
if
we
provide
this
maven,
a
maven
struct
in
source,
that
is
it
possible
for
that
to
still
confuse
does
it
need
even
more
annotations
to
say
not
only
is
this
a
maven
artifact,
but
this
is
made
of
an
artifact.
It
will
work
on
this
kind
of
supply
chain,
not
on
one
that's
trying
to
pick
up.
You
know
you
kind
of
like
how
git
sources
are
not
enough
to
not
enough
to
know
that.
L
Yeah
it
does
I'm
under,
I
guess
some
of
the
things
and
it
might
be
the
question
for
adam
others
have
been
looking
at
this
one
of
the
main
reasons
that
we
need
to
know.
It's
it's
maven.
Is
it
because
we
need
to
look
at
the?
Why
is
it
the
metadata
imp
file
to
see
what
the
latest
version
of
a
file
is?
Is
that
really
you
know,
and
the
coordinates
is
that
the
main
reasons
of
basically
configure
the
figuring
the
watcher
to
be
able
to
know
where
to
look
for
where
to
pull.
G
G
I
don't
think,
there's
anything
about
a
source
template
that
necessarily
to
me
suggests.
We
need
to
know
where
it's
going,
it's
just.
How
do
I
get
the
latest
of
x
and
how
do
I?
How
do
I
meet
any
authentication
or
authorization
requirements
to
do
that?
L
L
O
O
L
Yeah,
and-
and
so
maybe
that
that's
maybe
yeah,
I
agree
exactly,
I
think,
to
add
a
bit
more
articulate
my
question
a
little
bit
better.
I
wonder
if,
as
part
of
this,
we
don't
have
to
think
about
implementation,
just
what
that
spec
changes
might
be.
If
we
were
to
do
a
helm,
chart
and
say
a
go
binary,
you
know
what
would
that
workload
if
change
needs
to
be,
if
it
did
anything,
I
think
that's
all
I'm
wondering.
I
It's
like
you're
asking:
why
do
we
need
a
maven
specific
key
or
is
the
process
of
of
retrieving
or
you
know,
pulling
for
a
maven
artifact
generic
enough
that
we
could
extend
that
to
more
different
types
of
artifacts?
Is
that
your.
J
So
in
the
case
of
pointing
to
the
maven
artifact
like
a
jar
itself,
is
a
set
of
files.
It's
often
pre-compiled
but
like
if
you
pass
that
through
k-pac
with
the
java,
build
packs
then
like
it
can
still
interpret
that
and
actually
turn
that
jar
into
a
runnable
image,
so
it
can
provide
a
jre
and
everything
else
around
it
necessary
for
it
actually
to
run
so
like
I
do
see
value
here.
On
that
sense,
I
think
the
question
may
be,
in
my
mind,
is
like
okay,
we
had
maven.
J
It's
not
necessarily
a
bad
thing
like
we
can
figure
out
like
what
are
the
common
use
cases
and
sort
of
add
them
as
we
need
to
if
it's
npm,
if
it's
a
rubygem,
if
it's
whatever
like
as
long
as
there's
a
story
around
like
this
artifact
has
source
code,
then
we
need
to
take
an
enrich
and
then
do
something
else
with
it
like.
I
think,
that's
fair.
G
I
think,
from
an
implementation
point
of
view,
it
may
be
that
we
find
that
they're
all
nearly
identical
and
under
the
hood
we
find
very
little
variance
between
them.
One
of
the
reasons
why
I've
kind
of
defended,
at
least
within
our
own
team,
you
know,
having
that
space,
maven
specific
and
being
specific,
is
that
that
code
code
communicates
twice
right
and
talking
to
the
computer.
Computer
is
the
easy
part
right,
so
it
makes
it
a
very
obvious
path
forward
for
an
implementer
and
a
maintainer
to
be
very
specific.
G
It
also
protects
us
from
the
oh
moment.
You
have
three
quarters
of
the
way
through
an
implementation
when
you
find
something
fundamentally
different
between
two
package
repositories,
for
example
that
now
become
very
awkward
to
maintain
in
the
long
run,
but
I
think,
as
far
as
when
we're
thinking
about
ux,
I
think
it's.
The
ux
alone,
where
I
would
say
instead
of
making
everything
appear,
general
from
the
outside,
is
to
appear
as
specific
and
explicit
as
possible
from
the.
I
Outside
wonder,
if
it's
worth
looking
at
this
in
two
parts,
right,
there's
a
maven
key
in
workload
and
the
descriptor
right,
but
there's
also
a
question
about:
do
we
need
a
maven
key
in
the
source
type
right
in
the
source
that
gets
promoted
between
the
stages
right?
If
we're
gonna
say
we
take
maven
as
input.
Currently,
you
know
we
have
two
kinds
of
source
we
can
promote
between
stages,
get
and
blob
right
is
the
plan
to
is.
I
Is
it
if
we
are
just
saying
we
need
maven
in
the
workload,
because
we
would
like
a
clean
interface
for
somebody
to
specify
this
is
my
maven
coordinate
and
then
underneath
we
need
we
need
it
needs
to.
There
needs
to
be
some
knowledge
that
it's
a
maven
coordinate,
because
we
have
to
pull
that
maven,
coordinate
and
find
the
list
of
versions
and
there's
a
bunch
of
maven
specific
code
in
that
integration.
To
a
point
where
you
really
do
need
something
that
says
me
than
in
the
workload
that
that
kind
of
makes
sense
to
me.
I
If
we're
saying
that,
we
want
to
extend
that
source
type
to
also
include
maven
right-
and
you
know
that
I
think
that
opens
more
questions
like
it's
already.
We
do
have
two
kinds
of
sources
you
can
promote
between
stages.
I
believe
we
have
like
get
repos
and
you
know
blobs
right,
you
know.
I
Is
it
gonna
be
weird
that
we're
creating
something?
That's
a
little
disjoint
between
those
two
two
places
you
know
if
you
look
at
descriptors,
are
something
we
could
have
more
types
of
in
the
future,
because
they're
not
we're
not
only
our
templates
are
dependent
on
their
spec.
You
know,
is
there
a
benefit
to
keeping
things
just
to
the
descriptor
level
and
not
pulling
them
into
the
type
system
and
kind
of
more
hard-coding
them
into
the
way
cartographer
works.
M
I
thought
that
the
I
thought
that
the
source
types
as
in
the
type
emitted
by
by
an
object,
we're
really
just
references
and
what
we
needed
was
a
way
to
ensure
that
we
could
obtain
that
reference
and
the
rest
would
be.
M
So
if
it's
may,
even
if
it's
a
repository
or
if
it's
a
new
type
of
like
url,
you
can
load
from,
then
it
doesn't
matter
as
long
as
all
of
the
components
along
the
way
know
how
to
load
from
that
kind.
Because
that's
the
supply
chain,
you
ended
up
with.
I
I
Right
now
they
have
the
same
structure
right
yeah,
but
but
in
the
future,
do
we
you
know
I
have
to
think
about
like
does
that
ever
need
to
be
extended
to
account
for
more
different
artifact
types,
because
we
have
this
pattern
of
flux,
get
repo,
always
clones
and
then
hosts
at
the
beginning,
but
I
don't
think
we
intended
that
to
be
the
only
way
you
could
pass
source
through
this.
You
know
thing
right,
maybe
I'm
wrong,
maybe
maybe
maybe
that
is
the
you
know.
E
C
M
J
H
Yeah,
I
was
just
gonna
say
that
I
think
that's
even
what
we
have
right
now
is
more
dangerous
than
than
this
like,
because
here-
and
I
may
just
be
repeating
with
what
rash
was
saying,
but
you
know
the
the
first
source
template
is
this-
maybe
morale
it
does
whatever
it
needs
to
do,
presumably
some
check
and
then
it
passes
it's
going
to
pass
something
on
and
what's
it
going
to
pass
on,
it's
going
to
pass
on
this
url.
H
The
the
larger
concern,
I
think
is,
is
folks
pointing
out
right
now
our
supply,
this
tap
supply
chains
happen
to
all
start
with
this,
the
git
repository
which
passes
the
source
of
the
tarball
and
like,
if
you
were
to
replace
that
that
resource
with
another
resource
that
did
the
exact
same
sort
of
translation
of
like
maine
to
shaw,
but
it
did
it
by
pointing
to
the
git
url
rather
than
creating
that
tarball
break
the
supply
chain
and
there's
nothing
in
the
and
like
the
workload
is
like
totally
the
workload
isn't
involved
in
that.
H
G
M
What
I'm
saying
is
it's
not
necessary
to
infer
it,
but
to
have
it
strongly
implied
if
you
put
in
the
word
mate,
if
you
put
in
the
word
maven
if.
C
J
J
It
doesn't
have
to
know
how
to
authenticate
to
an
image
registry
so
like
as
long
as
there's
something
that
produces
source
code,
then
sort
of
just
exposes
it
as
a
url
with
a
tarball
like
the
whole
rest
of
the
supply,
chain's
interoperable,
so
like
what
resource
gets
stamped
out
by
the
supply
chain.
It's
part
of
that
source
component.
J
That
does
actually
create
a
a
maven
repository
resource
that
actually
does
resolve
sort
of
in
the
flux
style
to
a
tar
ball
with
source
code
without
actually
updating
the
workload
and
you
search
you
can
do
that
via
params,
where
you
can
sort
of
define
your
own
structure.
J
Now,
that's
inelegant,
it's
not
user
friendly,
but
like
mechanically,
it
can
work
and
then
once
we
see
that
working,
I
think
we
can
go
through
and
say.
This
is
something
that
we
see
existing
in
the
wild.
It's
worth
normalizing
it.
So
we
can
basically
say
when
you
do
when
you
have
a
maven
artifact
like
this
is
how
you
should
specify
it
in
a
supply
chain
and
then
we're
just
sort
of
like
paving
the
road
rather
than
defining
the
road.
H
I
was
scott.
I
was
surprised
to
hear
you
say
that
the
job
of
the
workload
is
to
provide
provide
source
code
in
a
way
where
downstream
resources
don't
need
to
speak.
Get,
for
example,
not.
H
I
You
know
tarball
and
a
get
revision
next
to
it
as
if
you
know
that
was
the
kind
of
strict
definition
of
the
type
right
with
the
idea
that
these
types
are
supposed
to
be
swappable
and
strictly
defined,
and
so
I
don't
know
if
we
meant
to
do
this
necessarily
right,
but
we've
kind
of
excluded.
I
You
know
pipelines
that
promote,
for
instance,
get
repo,
and
you
know
the
commit
to
check
out
in
that
get
repo
from
kind
of
you
know
really
viable.
You
know
options,
although,
admittedly
you
could
use
the
tool
that
way
come
up
with
your
own
set
of
templates
that
work
like
that
right
and
I
don't
think
we
ever
declared
you're
always
supposed
to
use
this
with
flux
so
that
the
ecosystem
stays
compatible.
H
Yeah
with
like
our
our
basic
supply
chain,
all
you
need
to
do
is
swap
one
field
in
a
kpac
template
from
blob
to
get,
and
then
you
would
be
able
to
have
a
supply
chain
that
spoke
get
rather
than
spoke.
Tarball
right
and
everything
downstream
of
kpac
would
be
fine.
J
M
H
I'm
not
opposed
to
this
as
a
principle,
but
I'll
just
say
that
I'm
I
was
surprised
to
hear
it
as
a
principal
and
I've
heard
rash
say
like
we
should.
We
should
write
our
principles
down
somewhere.
This
would
be
one
that
yeah
as
we
discover
this.
Perhaps
you
know
we
should
kick
it
around
for
a
little.
You
know
kick
the
tires
on
it
and
then
actually.
G
To
your
thanks
rush
to
your
point,
those
of
us
in
the
integration
team
that
was
just
newly
formed
to
start
talking
about
this
stuff.
We
inferred
that
as
a
principle,
it
seemed
like
a
very
clear
principle.
M
I
was,
I
was
kind
of
there's
a
place.
I
keep
going
and
it's
I
don't
know
whether
to
make
an
rfc
for
it
or
not.
Whether
people
just
want
to
shoot
it
down
now
but,
like
I
keep
going
to
this
place
where
I
feel
like
we
should
make
in
this.
This
intention,
by
instead
of
having
the
source
provider,
be
the
first
resource,
it's
nice,
because
it's
a
resource
and
then
you
can
reason
about
it
in
the
order
that
it's
in.
M
But
it
also
feels
to
me
like
it's
the
first
responsibility
that
we
really
expect.
So
I
feel
like
there's
a
special
kind
of
resource,
which
is
the
one
that
turns
source
into
turns
unconstrained
sources
of
different
types
into
a
constrained
type
for
source
and
for
images.
Similarly-
and
I
don't
know
whether
we
should
say
you
know
is-
is
that
something
that
people
shouldn't
even
have
to
try
and
add
to
the
top
of
their
supply
chain?
M
Cartographer
out
of
the
box
will
do
that
and
the
first
resource
gets
a
source
right
based
on
pre-baked
rules,
because
they
always
seem
to
take
the
same
shape.
There's
a
bit
off
to
the
side,
but
I
always
think
that,
because
I'm
like,
I
don't
think
people
really
need
to
reason
about
that
part.
They
need
the
constrained
resource
and
what
they're
going
to
do
with
it
from
there
on
in.
L
So
and
there's
only
a
few
minutes
left,
there's
probably
a
lot
that's
been
talked
about
there.
There
were
some
concrete
actions
or
some
next
steps.
I
think
scott
you
propose
one
around
working
out.
We
can
just
configure
the
current
workload
to
be
able
to
watch
a
even
repo,
ignoring
any
ux
around
that
just
get
it,
get
something
working
and
get
something
being
pulled
in
to
the
supply
chain.
L
Looking
at
how
we
look,
we
look
at
downstream
dependencies
and
then
we'll
get
that
through
and
then
back
up
after
we've
got
that
going
looking
to
see
if
there's
any
commonality
across
different
artifacts
and
then
maybe
we
can
look
at
the
ux
around
what
that.
What
that
structure
of
the
workload
looks
like
if
anything
did
look
at
that
right.
G
Yeah
is
the:
is
there
any
need
right
now,
james
to
talk
about
there's
and
artifactory
in
the
in
the
title
of
this
rfc
yeah
and.
G
That's
there
for
a
reason
right
and
then
the
early
at
the
earliest.
We
have
customers
who
are
looking
to
us
saying
we
need
to
support
artifactory.
Now
we
have
to
understand
that
it's
managers
asking
this
question,
not
developers,
so
I
think
a
lot
of
us
right
away
like
jettisoned
the
idea
of
our
artifactory
in
favor
of
oh
well,
we're
going
to
talk
maven
or
we're
going
to
talk
some
other
supported,
artifact
helm.
G
That
being
said,
I
think
we
still
have
have
given
some
consideration
in
interacting
with
the
artifactory
api
to
try
to
go
the
question
being.
Are
we
are
getting
greater
penetration
by
supporting
specific
products,
or
are
we
getting
greater
penetration
by
supporting
specific
platforms?
G
That
being
said,
I
don't
think
there's
anything.
We've
talked
about
with
maven
that
couldn't
trip
or
possibly
be
thought
about
from
from
a
product
specific
api
point
of
view,
not
so
much
because
I
think
that's
like
the
way
to
go,
but
it
answers
some
client
questions.
Yeah
man,
yeah.
M
M
G
G
M
Answer
your
question:
yeah.
Sorry,
no
really!
My
question
was:
would
there
be
anything
different
in
this?
The
shape
of
the
the
data
that
needs
to
be
provided
by
the
workload?
Remembering
that,
like
security
information,
would
be
at
a
at
a
service
account
level?
It
wouldn't
be
something
we'd
be
passing
across.
So
if
they're
the
same
then
I
would
like
us
to
go
for
the
same
and
then
use
other
selection
criteria
if
we
want
to
be
specific
to
maven.
So
maybe
we
just
want
to
say
yeah
whatever
that
protocol
is
called
the
artifactory.
L
Protocol,
I
just
confirmed
as
well.
It
was
more
than
just
the
next
steps:
it's
not
necessary
to
to
be
able
to
deliver
this.
It's
just
going
in
get
something
going
through
for
the
dancing
dependencies
work
out,
how
that
needs
that
can
come
back
up
and
then
work
on
what
that
polling.
What's
that
watching
really
looks
like
because
then
we'll
understand
more
about
what's
needed
to
come
in,
so
I
think.
L
Yeah,
and
whilst
this
is,
I
know
initially
targeting
the
maven
but
having
in
the
back
having
understanding
what
that's
going
to
look
like,
you
know,
if
we
come
around,
then
in
two
months
time
they
go.
Oh
we've
got
to
do
this
for
helm
or
this
for
go
binary
this
for
rubygem.
You
know
it
may
be
we
might
go.
Maybe
we
should
have
done
it
a
different
way.
So
it's
just
having
that
that
thought
in
the
back
of
our
minds
as
we
as
we
go
through
that
what
that
do
any.
L
A
All
right,
so,
thank
you
all
for
contributing
to
the
discussion.
It's
a
change
that
we
didn't
have
didn't
have
enough
time
to
touch
on
the
discussion
topic
that
mari
put
here,
but
yeah,
probably
if
you
already
have
a
length
full
apr
or
issue
where
to
continue
this
discussion.