It might also be nice to have a manifest checked into package repos for a few reasons:
- So that you have at least one known good configuration that presumably passed tests and such.
- To keep the different developers of the package in sync using similar setups.
Of course, 2 cuts both ways: it’s nice that all the devs have similar setups and they can upgrade in sync, but that means that there’s less testing of the package with different setups. Benefit 1 may be better accomplished with some kind of database for recording known good/bad configurations.