[NU-1897] nussknacker-components-api: remove dependency to async-http-client-ba…

[arkadius]

…ckend-future and belongs

Describe your changes

Checklist before merge

• Related issue ID is placed at the beginning of PR title in [brackets] (can be GH issue or Nu Jira issue)
• Code is cleaned from temporary changes and commented out lines
• Parts of the code that are not easy to understand are documented in the code
• Changes are covered by automated tests
• Showcase in dev-application.conf added to demonstrate the feature
• Documentation added or updated
• Added entry in Changelog.md describing the change from the perspective of a public distribution user
• Added MigrationGuide.md entry in the appropriate subcategory if introducing a breaking change
• Verify that PR will be squashed during merge

Summary by CodeRabbit

• Chores

  • Updated library dependencies for the componentsApi project to enhance dependency management.
  • Added a new library dependency for the liteK8sDeploymentManager to improve functionality.

• New Features

  • Enhanced Component API to access expression parts used in SpEL templates.
  • Improved handling of deployments for scenarios with dictionary editors after model reload.
  • Updated Flink Kafka Source/Sink TypeInformation for better performance.
  • Introduced a new Activities panel for browsing scenario activities.
  • Added scenario labels for better organization and navigation.

• Documentation

  • Updated changelog to reflect new features, improvements, and fixes.
  • Revised migration guide to outline significant changes and necessary user adaptations.

[coderabbitai]

📝 Walkthrough

Walkthrough

The changes in the pull request focus on the build.sbt file for both the liteK8sDeploymentManager and componentsApi projects. For the liteK8sDeploymentManager, a new dependency on com.softwaremill.sttp.client3 for async-http-client-backend-future has been added. In contrast, the componentsApi project has replaced its dependency on async-http-client-backend-future with a dependency on core, indicating a shift in the HTTP client library usage. Additionally, minor formatting adjustments have been made to the alignment of dependency declarations. These changes do not introduce new methods, classes, or significant alterations to the existing logic or control flow of the build configuration.

Sequence Diagram(s)

sequenceDiagram
    participant Developer
    participant BuildTool
    participant LiteK8sDeploymentManager
    participant ComponentsApi

    Developer->>BuildTool: Update build.sbt
    BuildTool->>LiteK8sDeploymentManager: Add async-http-client-backend-future dependency
    BuildTool->>ComponentsApi: Remove async-http-client-backend-future dependency
    BuildTool->>ComponentsApi: Add core dependency
    ComponentsApi-->>BuildTool: Confirm dependency updates
    LiteK8sDeploymentManager-->>BuildTool: Confirm dependency updates
    BuildTool-->>Developer: Build configuration updated

Loading

Possibly related PRs

• Fix scenario tests with fragment input validation #7159: The changes in this PR involve modifications to the ProcessCompilerData object, specifically related to the handling of expression evaluators, which may indirectly relate to the dependency updates in the main PR that affect how components interact with HTTP clients.
• [Nu-1890] hide categories from a scenarios list and more scenario details when only one category is available #7183: This PR includes updates to the components-api module, specifically replacing a wide dependency on async-http-client-backend-future with a narrower dependency on sttp's core, which directly relates to the changes made in the main PR regarding the componentsApi project.
• [Nu-1892] add missing tooltips #7193: The changes in this PR also mention the components-api module and its dependency updates, which are relevant to the modifications made in the main PR regarding the same module.
• fixed search focus and keyboard/clipboard events #7207: This PR addresses keyboard and clipboard events, which may relate to the overall functionality of the application, including how dependencies are managed and utilized, although it is less directly connected to the specific changes in the main PR.
• [NU-1888] change typing text to spinner and provide delayed adding on enter until validation finish #7215: This PR introduces a delay in adding entries until validation is complete, which may relate to the overall user experience and functionality of components that depend on the updated libraries in the main PR.
• 1.18 ports7 #7221: This PR includes updates to the EditableEditor component, which may indirectly relate to the changes in dependencies affecting how components render and interact with user inputs.
• 1.18 ports8 #7233: This PR modifies the visual representation of a progress bar, which may not directly relate to the main PR but indicates ongoing UI enhancements that could be influenced by the underlying dependency updates.

Suggested labels

docs, client, submodules

Suggested reviewers

• JulianWielga
• Dzuming

Warning

Rate limit exceeded

@arkadius has exceeded the limit for the number of commits or files that can be reviewed per hour. Please wait 3 minutes and 7 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📥 Commits

Reviewing files that changed from the base of the PR and between 3cca1e6 and 108551d.

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (1)

build.sbt (1)

1544-1557: Fix indentation inconsistency in library dependencies.

The indentation in the library dependencies list is inconsistent. Some lines use more spaces than others, which affects readability.

Apply this diff to fix the indentation:

        "org.apache.commons"             % "commons-text"                  % flinkCommonsTextV,
        "org.typelevel"                 %% "cats-core"                     % catsV,
        "com.beachape"                  %% "enumeratum"                    % enumeratumV,
        "com.typesafe.scala-logging"    %% "scala-logging"                 % scalaLoggingV,
        "com.typesafe"                   % "config"                        % configV,
        "org.semver4j"                   % "semver4j"                      % "5.4.0",
        "javax.validation"               % "validation-api"                % javaxValidationApiV,
        "org.scala-lang.modules"        %% "scala-collection-compat"       % scalaCollectionsCompatV,
        "com.iheart"                    %% "ficus"                         % ficusV,
        "org.springframework"            % "spring-core"                   % springV,
        "org.springframework"            % "spring-expression"             % springV        % Test,
        "com.google.code.findbugs"       % "jsr305"                        % findBugsV,
        "com.softwaremill.sttp.client3" %% "core"                          % sttpV,
        "org.scalatestplus"             %% s"scalacheck-$scalaCheckVshort" % scalaTestPlusV % Test

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 0f94b80 and 13dd682.

📒 Files selected for processing (1)

• build.sbt (1 hunks)

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (1)

docs/MigrationGuide.md (1)

Upgrade requests from 2.26.0 to 2.32.3 for security and performance improvements

The requests library in setup.py is pinned to version 2.26.0, while the latest stable version is 2.32.3. This newer version includes:

• Security patches and bug fixes
• Performance improvements
• Better compatibility with modern Python versions

🔗 Analysis chain

Line range hint 6-6: Consider upgrading requests library version

The requests library is pinned to version 2.26.0 which is outdated. Consider upgrading to the latest stable version to get security fixes and improvements.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Check latest version and known vulnerabilities for requests 2.26.0

echo "Latest requests version from PyPI:"
curl -s https://pypi.org/pypi/requests/json | jq -r '.info.version'

echo "Checking for known vulnerabilities in requests 2.26.0..."
# Note: In a real environment, you would use tools like safety or snyk

Length of output: 276

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 3cca1e6 and 108551d.

📒 Files selected for processing (2)

• docs/Changelog.md (1 hunks)
• docs/MigrationGuide.md (1 hunks)

🔇 Additional comments (2)

docs/Changelog.md (1)

17-19: LGTM! Clear and well-documented changelog entry.

The changelog entry properly documents the dependency change from PR #7257, clearly stating that the wide dependency to async-http-client-backend-future was replaced with a narrower dependency to sttp's core. The entry follows the established format and provides sufficient detail about the change.

docs/MigrationGuide.md (1)

Line range hint 32-38: LGTM! Well-implemented dot product function

The implementation is correct and includes proper input validation. The code is clear and efficient.

[lukasz-bigorajski]

LGTM