OpenDeps allows you to express your application's external runtime dependencies. Using OpenDeps, you use a YAML file to clearly communicate what APIs your software component needs to run correctly.
Formalising your application's runtime dependencies helps improve software quality (e.g. earlier integration testing) and operations (e.g. deployment automation) to help you move faster, safely.
Benefits:
- Verify dependencies are in place before deploying your app
- Rapidly spin up live mocks of all your app's dependencies so you can build/test your app quickly
- Integrates with the OpenAPI specification
- Language agnostic and cross-platform
- Human readable and machine readable; comprehensible by developers and non-developers
Here is an example:
dependencies:
order_service:
summary: The order service.
spec: https://raw.githubusercontent.com/opendeps/specification/main/examples/petstore/order_service_openapi.yaml
version: "2.0.0"
availability:
url: https://example.com/orders/healthz
security: basicAuth
pet_name_service:
summary: The pet naming service.
spec: ./pet_name_service_openapi.yaml
version: "1.0.0"Some things to note about this example:
- Our Petstore app depends on two external services:
order_serviceandpet_name_service. Each is defined by an OpenAPI specification. - The services expose an availability URL that responds with an
HTTP 2xxstatus to indicate it is up. This lets us probe for the existence of these dependencies, such at deploy time or for operational health monitoring. - Our app requires version
2.0.0of theorder_serviceto be present and version1.0.0ofpet_name_service. Tools check the OpenDeps version requirement against the OpenAPI spec.
See a more complete example for more details about use and options.
OpenDeps is for expressing your external runtime dependencies, rather than things needed to build or package your application.
Applications often depend on external APIs and other resources. It's common to need specific versions of these APIs for your software to function correctly.
During development OpenDeps improves the speed of the 'inner loop' of test-build on your local machine. Tools create live working mock endpoints of your API dependencies, based on their OpenAPI specs.
Ship an OpenDeps specification alongside your application, so at deployment time you can verify that all required dependencies exist. This can save you deploying an application into an environment in which it cannot work, saving your users from service outages.
You are building your application and would like to test it locally. Like many applications, yours depends on third party APIs for various services. With a single command, all your application's external dependencies are running, in mock form, on your local machine.
With its dependencies running, you can now interactively test your application against local mocks, saving you deployment effort and providing a much faster feedback loop.
This is possible because tools like Imposter can understand your app's dependencies, fetch their OpenAPI specifications, and automatically create live mocks of those dependencies.
You can mark which dependencies are required in your OpenDeps specification:
dependencies:
order_service:
summary: The order service.
description: The service allows ordering of pet supplies from the store.
spec: https://raw.githubusercontent.com/opendeps/specification/main/examples/petstore/order_service_openapi.yaml
version: "2.0.0"
required: true
pet_name_service:
summary: The pet naming service.
spec: ./pet_name_service_openapi.yaml
version: "1.0.0"
required: falseDependencies not marked as required ('optional dependencies') represent those without which your application can still operate, but perhaps in a degraded mode.
You have built and tested your application and it has reached the deployment stage of your CI/CD pipeline. Just before you trigger your deployment operation, your tools spot that one of the application's required dependencies is not available.
Perhaps another team has not yet deployed the version you require, or maybe the third party endpoint is not reachable from your application's environment. Thanks to the availability probe, your deployment can fail fast, avoiding causing a service outage for your users.
This is possible because tools verify dependency availability using the availability.url value. Those marked with required: true must be available for your application to work properly.
You can customise the values used to check for availability, or use the defaults. If your availability endpoint requires it, you can customise the security configuration.
Learn more about availability probes.
The OpenDeps specification is defined in JSON Schema.
See the examples directory for sample OpenDeps files, including:
The OpenDeps command line tool provides the following features:
- Start live mocks of dependencies
- Test the availability of dependencies
- Validate OpenDeps files against this specification
It's open source and available cross-platform.
Get the OpenDeps CLI for your system.
Suggestions and improvements to the specification, examples, or documentation are welcome. Please raise them as GitHub issues.