Today I was trying to run my project with a newer Zig version, this triggered a compiler error in a dependency that I didn’t know I had. It wasn’t too difficult to fix, I just looked into the folder in pkg and deleted the build.zig.zon, but it made me think:
- Why is the compiler wasting resources fetching and compiling build files that I don’t use? (this already was a problem for me in the past, see The build system suddenly spends a lot of time in "Configure")
- Isn’t this also a security loophole? I would prefer to go back to the time where you had to manually specify all transitive dependencies. I want to know what projects I’m depending on, all of them.