[lerna] upgrade to recent version, refactoring of package.json "scripts" entries #1016
Conversation
marcdumais-work
force-pushed
the
upgrade-lerna
branch
4 times, most recently
from
bbe7983
to
f4c70ca
Compare
README.md
Outdated
| 3. Now you are ready to build the application: | ||
|
|
||
| ```bash | ||
| yarn && yarn all # install npm dependencies and build all |
There was a problem hiding this comment.
I'm not sure about this. I'm used to just do yarn and then either execute yarn start:browser or yarn start:electron. All other users did the same. Having to do yarn all won't be known and we might get questions about failing yarn start:browser. Is there a way to keep yarn that builds all?
There was a problem hiding this comment.
We can continue to use "prepare" like that if we chose. But the trend is going in the other direction. From what I understand, yarn2 took measures to prevent "prepare" being used like this - if/when we eventually upgrade, I think it will be necessary to at least do yarn && yarn prepare. See: yarnpkg/berry#2305 (comment)
For now I will revert that change in the form of an extra commit on top, that we can squash or remove, before merging.
There was a problem hiding this comment.
I can also update the PR description and commit message, if we want to preserve current "yarn prepare" capabilities.
There was a problem hiding this comment.
@bhufmann can you have another look? Consider the two commits together, as well as my comments above, and let me know if that's what you want. If so, I will squash the commits together and update the commit message
There was a problem hiding this comment.
I think for now we should preserve the current "yarn prepare" capabilities. You can open a separate issue tracker and PR for changing the behaviour. I think it would be more transparent for the developers to follow.
There was a problem hiding this comment.
I have pushed a new version, that preserves backward compatibility of the currently used (AFAIK) root package.json "scripts" - let me know what you think.
marcdumais-work
force-pushed
the
upgrade-lerna
branch
from
f4c70ca
to
859367b
Compare
Done in the first commit. The only change I think was necessary was to adapt to use |
marcdumais-work
force-pushed
the
upgrade-lerna
branch
from
ffe1b7f
to
9ae058f
Compare
marcdumais-work
changed the title
marcdumais-work
force-pushed
the
upgrade-lerna
branch
3 times, most recently
from
dfdfde7
to
e099bd2
Compare
…ts" entries Updated lerna from v4.x to 7.x, getting rid of several big security vulnerabilities, that were present in the older version. Also updated ther repo's root README to do small adjustments, related to the changes. I used the README to test too, replicating the contained commands. More details: root package.json and electron/browser package.json: Cleaned-up the "scripts" section. Some uses of lerna in there were not working any more, so they were replaced with a non-lerna alternative. Since I was already in there, I took the opportunity to refactor the "scripts" section. I attempted to keep the "public API" the same - i.e. so the the commands that are documented in the README and used elsewhere in the repo should still work the same. For instance: - Added convenience shortcuts to call scripts in browser and electron sub-packages, called respectively "electron" and "browser", rather than having to use the long form every time (yarn --cwd <folder> <command>) - Moved to the specific application, some scripts that ought to be defined there, leaving the root entries as shortcuts, to call the specific implemetation(s). - Introduced the "concurrently" dev-dependency - it helps start two or more processes from one "script" entry, format their output so it's readable and easy to distinguish what came out of which process. It also can watch all started processes and make sure that if one exits, the others are killed too (using the "--kill-others" option). This is used in the "scripts" entries that start both one of the viewer application (browser or electron) and the trace server. - To avoid potential issues, modified the "workspaces" section to specifically name the browser and electron applications separately rather than use a glob (*): the reason is that the "plugins" folder is created in the same "examples" folder, and could be considered a yarn workspace entry on its own, which we do not want. lerna.json: updated, according to the new version used. electron-builder config: Corrected relative path to the plugins folder, so that it will be included in packages, such as AppImage and deb on Linux. Also updated currently used Electron version (23.6.0). Fixes #1013 Signed-off-by: Marc Dumais <[email protected]>
marcdumais-work
force-pushed
the
upgrade-lerna
branch
from
e099bd2
to
b5fd22d
Compare
Description
Updated lerna from v4.x to 7.x, getting rid of several big security vulnerabilities, that were present in the older version. Also updated their repo's root README to do small adjustments, related to the changes. I used the README to test too, replicating the contained commands.
More details:
root package.json and electron/browser package.json:
Cleaned-up the "scripts" section.
Some uses of lerna in there were not working any more, so they were replaced with a non-lerna alternative. Since I was already in there, I took the opportunity to refactor the "scripts" section. I attempted to keep the "public API" the same - i.e. so the the commands that are documented in the README and used elsewhere in the repo should still work the same.
For instance:
lerna.json:
updated, according to the new version used.
electron-builder config:
Corrected relative path to the plugins folder, so that it will be included in packages, such as AppImage and deb on Linux. Also updated currently used Electron version (23.6.0).
How to test?
$> cp ~/.npmrc ~/.npmrc-orig$> npm add -g verdaccio$> verdaccio# start verdaccio in a terminal, then continue in another one (main)-
$> npm config set registry http://localhost:4873/-
$> yarn config set registry http://localhost:4873/-
$> npm adduser --registry http://localhost:4873/# use bogus user/credentials. e.g.: test/test/[email protected]$> git clean -ffdx && yarn && yarn && yarn test$> npx lerna publish --registry=http://localhost:4873 --exact --no-git-tag-version --no-pushpackage.json, to use the just published version of "theia-traceviewer". e.g."theia-traceviewer": "0.2.0"(instead of0.1.0)package.json, temporarily remove "theia-extensions/*" from the yarn workspace (else local version0.1.0will be picked-up$> git clean -ffdx && yarn && yarn build:examples && yarn download:plugins && yarn download:server && yarn download:sample-traces$> yarn start:electronand/or$> yarn start:browser$> git reset --hard && git clean -ffdx && yarn && yarn test$> npx lerna publish --registry=http://localhost:4873 --exact --canary minor --preid=next.$(date -u '+%Y%m%d%H%M%S').$(git rev-parse --short HEAD) --dist-tag=next --no-git-tag-version --no-push --yespackage.json, to use the just published version of "theia-traceviewer". e.g."theia-traceviewer": "0.2.0-next.20230918212601.f4c70ca.375"(instead of0.1.0)package.json, temporarily remove "theia-extensions/*" from the yarn workspace (else local version0.1.0will be picked-up$> git clean -ffdx && yarn && yarn build:examples && yarn download:plugins && yarn download:server && yarn download:sample-traces$> yarn start:electronand/or$> yarn start:browseryarn.lockas you continue working on something else:$> npm config delete registry http://localhost:4873/$> yarn config set registry https://registry.npmjs.org/.npmrc:$> rm ~/.bashrc && mv ~/.bashrc.orig ~/.npmrcverdaccioin the other terminal (Ctrl-c)yarn auditBefore this PR (master):
After:
