update all dependencies #2693
update all dependencies #2693
Conversation
✅ Deploy Preview for taquito-test-dapp ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
|
A new deploy preview is available on Netlify at https://321a4da--tezostaquito.netlify.app |
|
New packages have been deployed to the preview repository at https://npm.preview.tezostaquito.io/. Published packages: |
ac10n
force-pushed
the
2023-oct-update-all-dependencies
branch
3 times, most recently
from
599f0d3 to
56c5726
Compare
| @@ -17,7 +17,6 @@ jobs: | |||
| fail-fast: false | |||
| matrix: | |||
| node: | |||
| - 'lts/gallium' | |||
There was a problem hiding this comment.
i don't think we should remove gallium completely, even if gallium is maintenance LTS, it still is LTS. So we'd want to make sure it still works with gallium
There was a problem hiding this comment.
Sure. I'll check to see how much things need to go back to support gallium.
There was a problem hiding this comment.
There is a problem here: When we test Taquito on 16, we also build it. But new version of some of our dependencies require node >=18. Examples are rollup and lint-staged.
I think one good way to move faster is:
- Move the build environment with the lastest lts (or even latest current)
- Keep the engine version in
package.jsonsupport the oldest supported lts - In CI, build with a recent node version, but test with all supported node versions
This allows us to move faster, but make sure we keep supporting the node versions we still care about.
| @@ -77,7 +76,7 @@ jobs: | |||
| - uses: actions/checkout@v3 | |||
| - uses: actions/setup-node@v3 | |||
| with: | |||
| node-version: lts/gallium | |||
| node-version: lts/hydrogen | |||
There was a problem hiding this comment.
can we be certain that flextesa builds are good with hydrogen? iirc we used to have an issue with it
There was a problem hiding this comment.
We are getting more flextesa errors. Maybe this explains it. What is a possible reason for the relation?
| | v16 LTS/Gallium | ✅ | | ||
| | 17.3.x | ✅ | | ||
| | v16.13.1 | ❌ | | ||
| | v16 LTS/Gallium | ❌ | |
There was a problem hiding this comment.
I think we should still support gallium until Node themselves stops maintenance LTS on gallium
| }); | ||
|
|
||
| return object; | ||
| test('Estimates, forges, signs, obtains the operation hash and injects the operation', async () => { |
There was a problem hiding this comment.
I'm a little bit confused to read what the changes actually are here in this file
There was a problem hiding this comment.
I suggest you set the option "hide whitespaces"
| @@ -12,7 +12,7 @@ | |||
| }, | |||
| "version": "17.3.1", | |||
| "dependencies": { | |||
| "@ledgerhq/devices": "6.20.0", | |||
| "@ledgerhq/devices": "8.0.7", | |||
There was a problem hiding this comment.
are we able to test these changes?
There was a problem hiding this comment.
@ledgerhq/devices seems not used anywhere 😅
There was a problem hiding this comment.
@hui-an-yang Should we remove it then?
There was a problem hiding this comment.
i'd love to remove it, might still want to be safe to test it's working as expected
| @@ -22,8 +21,5 @@ export default { | |||
| json(), | |||
| // Compile TypeScript files | |||
| typescript({ tsconfig: './tsconfig.prod.json', useTsconfigDeclarationDir: true }), | |||
|
|
|||
| // Resolve source maps to the original source | |||
| sourceMaps(), | |||
There was a problem hiding this comment.
do we not need these anymore?
There was a problem hiding this comment.
I need to verify this. I'll compare packaged contents before and after this change to make sure nothing is being broken. The reason for this change is that the rollup-plugin-sourcemap is not updated for a long time, and depends on an older version of rollup.
There was a problem hiding this comment.
I checked, and seems that the files are the same before and after this change
| @@ -88,7 +88,13 @@ export class RemoteSigner implements Signer { | |||
|
|
|||
| private createURL(path: string) { | |||
| // Trim trailing slashes because it is assumed to be included in path | |||
| return `${this.rootUrl.replace(/\/+$/g, '')}${path}`; | |||
| // the regex solution is prone to ReDoS. Please see: https://stackoverflow.com/questions/6680825/return-string-without-trailing-slash#comment124306698_6680877 | |||
| REVEAL_TZ3: 2000, | ||
| REVEAL_TZ4: 2000, | ||
| }; | ||
| export const DEFAULT_FEE = { |
There was a problem hiding this comment.
make sure to update all references to the type change from enum to object
There was a problem hiding this comment.
Interestingly, there seemed to be no need to change. And frankly, I think object is more relevant here.
ac10n
force-pushed
the
2023-oct-update-all-dependencies
branch
from
5145339 to
09663a5
Compare
| @@ -84,7 +83,8 @@ export default ({ | |||
| const { Parser, packDataBytes } = await import('@taquito/michel-codec'); | |||
| const { RpcClient } = await import('@taquito/rpc'); | |||
| const { SaplingToolkit, InMemorySpendingKey, InMemoryViewingKey } = await import('@taquito/sapling'); | |||
|
|
|||
| const TransportWebHID = (await import("@ledgerhq/hw-transport-webhid")).default; | |||
There was a problem hiding this comment.
curious the reason behind this change have the package update what it export?
There was a problem hiding this comment.
I'm not sure, but as we update packages, some of them fail to be unable to be imported normally in the website. Should have something to do with ESM vs commonJS packaging
There was a problem hiding this comment.
If this is the only way it works, I understand that we have to
Not a blocker just trying to understand the root cause, unsure esm/commonjs is relevant in the context since @ledgerhq/hw-transport-webhid didn't upgrade
closes #2612
closes #2435
closes #2396
In this PR, please also make sure:
closes #TICKETNUMBERin the description box (when applicable)Release Note Draft Snippet
All dependencies are updated to the latest versions. The only exception is
axios, which will later be replace withfetch.Also, the node version is upgraded from 16 to 18.