Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

enhancement/bump plugins peer dependencies to match latest minor release range #1300

Merged
merged 2 commits into from
Nov 8, 2024

Conversation

lschierer
Copy link
Contributor

peer dependencies need to match dev dependencies or package managers will occasionally (pnpm will always) complain

Related Issue

I didn't file an issue about this, because it was easy enough to fix the couple of plugins I've used so far

Summary of Changes

I updated the peer dependency line to match the dev dependency line in the package.json for several of the plugins. I should have gone through and done them all, but I don't currently have time.

Copy link
Member

@thescientist13 thescientist13 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah, this is currently something lacking with our Lerna publishing setup since Lerna doesn't handle bumping peerDependencies unfortunately. (That said, I never understood why npm complains about this since even with a range of ^0.4.0 shouldn't that support any <= 1.0.0 🤷‍♂️ )

We do try and surface this now in our new docs and we also have it so the init command now drops a .npmrc file when scaffolding a new project so user's wont have to worry about the flag when starting a new project.

This is something I've wanted to revisit in our next batch of working in the context of updating our overall monorepo / publishing hygiene (like moving off Yarn 1.x, using conventional commits, general release management enhancements, etc)


That all said, would you be open to making the same bumps for all of other plugins too? Would be nice to level them all up at once until we can hopefully solve this through our publishing workflow. 🙏

@thescientist13 thescientist13 added Plugins Greenwood Plugins v0.30.1 labels Nov 7, 2024
@lschierer
Copy link
Contributor Author

PR updated to include more plugins per #1300 (review)

Luke Schierer added 2 commits November 8, 2024 16:07
…will occasionally (pnpm will always) complain
…cli": "\^0.4.0"|"@greenwood/cli": "\^0.30.0"|' {} \;
@thescientist13 thescientist13 changed the title peer dependencies need to match dev dependencies or package managers … enhancement/bump plugin peer dependencies to match latest minor release range Nov 8, 2024
@thescientist13 thescientist13 added the enhancement Improve something existing (e.g. no docs, new APIs, etc) label Nov 8, 2024
Copy link
Member

@thescientist13 thescientist13 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you for this and making all the updates. 🙏

@thescientist13 thescientist13 changed the title enhancement/bump plugin peer dependencies to match latest minor release range enhancement/bump plugins peer dependencies to match latest minor release range Nov 8, 2024
@thescientist13 thescientist13 merged commit dd1b720 into ProjectEvergreen:master Nov 8, 2024
8 checks passed
@thescientist13
Copy link
Member

Just did a quick test and looks like the peer dependency warnings are gone now! 🎉

➜  my-app rm .npmrc
➜  my-app npm i -D @greenwood/plugin-typescript
npm warn deprecated inflight@1.0.6: This module is not supported, and leaks memory. Do not use it. Check out lru-cache if you want a good and tested way to coalesce async requests by a key value, which is much more comprehensive and powerful.
npm warn deprecated gulp-header@1.8.12: Removed event-stream from gulp-header
npm warn deprecated trim@0.0.1: Use String.prototype.trim() instead
npm warn deprecated glob@8.1.0: Glob versions prior to v9 are no longer supported
npm warn deprecated coffee-script@1.12.7: CoffeeScript on NPM has moved to "coffeescript" (no hyphen)

added 346 packages, and audited 347 packages in 3s

94 packages are looking for funding
  run `npm fund` for details

6 high severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

Run `npm audit` for details.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement Improve something existing (e.g. no docs, new APIs, etc) Plugins Greenwood Plugins v0.30.1
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants