On Thu, Apr 10, 2014 at 6:30 AM, Michael Snoyman <michael@snoyman.com> wrote:

But as has been mentioned elsewhere, the accidental uploads is far worse than it seems at first, since cabal can backtrack and continue using the bad version! If I upload foo-1.0.0.1 that mistakenly says it works with bar 1.1, and then issue a point release foo-1.0.0.2 that puts the upper bound back on bar, cabal will no longer get any PVP upper bound benefits, since it will simply try to use foo-1.0.0.1.

Isn't this fixed to a large degree by deprecating the bad version on hackage? I also hope the library maintainer would release foo-1.0.0.3 that properly builds with bar 1.1. This can still cause issues, but I think it should be solved with tooling.