Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): lock qs to 6.10.4 #44

Merged
merged 1 commit into from
Sep 5, 2023
Merged

fix(deps): lock qs to 6.10.4 #44

merged 1 commit into from
Sep 5, 2023

Conversation

MikeMcC399
Copy link

@MikeMcC399 MikeMcC399 commented Aug 26, 2023
edited
Loading

PR Checklist:

  • I have run npm test locally and all tests are passing.
  • I have added/updated tests for any new behavior.
  • If this is a significant change, an issue has already been created where the problem / solution was discussed: qs@6.10.5 dependency issues deprecation warning #42

PR Description

  • This PR changes the dependency qs from using a semver definition ~6.10.3 to using a fixed version 6.10.4 according to one option in the recommendation from qs@6.10.5:

$ npm view qs@6.10.5 deprecated
when using stringify with arrayFormat comma, [] is appended on single-item arrays. Upgrade to v6.11.0 or downgrade to v6.10.4 to fix.

Notes

The PR does not change the version of qs chosen when installing @cypress/request with npm or pnpm.

The PR forces the choice of qs version made by Yarn so that it corresponds to the version choice made by npm and pnpm, which already resolve ~6.10.3 to the selection 6.10.4. This avoids that Yarn chooses the deprecated 6.10.5 version.

npm-pick-manifest mentions the algorithm whereby npm "Prefers non-deprecated versions to deprecated versions".

@cypress-app-bot
Copy link

@MikeMcC399 MikeMcC399 marked this pull request as ready for review August 26, 2023 08:20
This was referenced Aug 26, 2023
Closed
Closed
@nagash77
Copy link

going to hold off on merging this until post Cy13 feedback dies down a bit. Don't want to introduce new possible vectors for problems that might mask Test Replay issues.

@MikeMcC399
Copy link
Author

@nagash77

going to hold off on merging this until post Cy13 feedback dies down a bit. Don't want to introduce new possible vectors for problems that might mask Test Replay issues.

That is a very understandable tactic, given that:

  • The issue affects only Yarn users, not npm or pnpm users.
  • Apart from a deprecation warning there has been no feedback that a technical issue is caused.
  • A workaround is available for Yarn users:

add the following to package.json:

  "resolutions": {
    "qs": "6.10.4"
  }

@nagash77 nagash77 merged commit ca62f3a into cypress-io:master Sep 5, 2023
@MikeMcC399 MikeMcC399 deleted the peg/qs branch September 5, 2023 20:01
@MikeMcC399

This comment was marked as resolved.

Sign in to view
@MikeMcC399

This comment was marked as outdated.

Sign in to view
@nagash77
Copy link

nagash77 commented Sep 6, 2023

@MikeMcC399 yeah I am seeing the same thing. Rerunning that build

@cypress-app-bot
Copy link

🎉 This PR is included in version 3.0.1 🎉

The release is available on:

Your semantic-release bot 📦🚀

@MikeMcC399 MikeMcC399 mentioned this pull request Oct 27, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nagash77 nagash77 nagash77 approved these changes

Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

qs@6.10.5 dependency issues deprecation warning
3 participants
@MikeMcC399 @cypress-app-bot @nagash77