The Wayback Machine - https://web.archive.org/web/20200225152845/https://github.com/yarnpkg/yarn/issues/7320
Skip to content

/ yarn

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

yarn should warn if a resolution appears to attempt to change a top level dependency #7320

Open
sabrinaluo opened this issue Jun 5, 2019 · 10 comments
Open

yarn should warn if a resolution appears to attempt to change a top level dependency #7320

sabrinaluo opened this issue Jun 5, 2019 · 10 comments
Labels
cat-feature good first issue

Comments

@sabrinaluo
Copy link

@sabrinaluo sabrinaluo commented Jun 5, 2019
edited

Do you want to request a feature or report a bug?
feature request

What is the current behavior?
Currently yarn why won't indicate any package info in the resolutions field

If the current behavior is a bug, please provide the steps to reproduce.

  1. install a package with any version, e.g "pkg": "^1.0.0"
  2. add resolutions field in package.json, pkg: "1.0.0"
  3. update "pkg": "^1.0.0" to "pkg": "^2.0.0" in deps
  4. run yarn why pkg

It only displays "pkg": "^2.0.0" being used, but no info about pkg: "1.0.0", while in yarn.lock, can find pkg: "1.0.0" related info

What is the expected behavior?
expect to display resolutions package info as well

Please mention your node.js, yarn and operating system version.
yarn: 1.16.0
macOS
node: 8.16.0
@DanielRuf

This comment has been minimized.

Sign in to view
Copy link
Contributor

@DanielRuf DanielRuf commented Jun 5, 2019
edited

Hi @sabrinaluo,

according to https://yarnpkg.com/lang/en/docs/selective-version-resolutions/ it is only meant for subdependencies, not the toplevel dependencies as these would be normally set in the lockfile.

which lets you define custom package versions inside your dependencies through the resolutions field in your package.json file. Normally, this would require manual edits in the yarn.lock file.
@DanielRuf

This comment has been minimized.

Sign in to view
Copy link
Contributor

@DanielRuf DanielRuf commented Jun 5, 2019

Try the following example and yarn why supports-color:

{
  "name": "yarn-pkg-test",
  "version": "1.0.0",
  "main": "index.js",
  "license": "MIT",
  "dependencies": {
    "chalk": "^2.4.2"
  },
  "resolutions": {
    "chalk/supports-color": "5.3.0"
  }
}
@sabrinaluo

This comment has been minimized.

Sign in to view
Copy link
Author

@sabrinaluo sabrinaluo commented Jun 5, 2019

Thanks to your quick response. @DanielRuf

Yes I understand it's for sub-dependencies, but there might be users make mistakes like me, so it would be great if this can be improved.

The case I encountered is having styled-components 3.4.x as dependency while a sub-dependency rebass requires styled-components 3.2.x. Instead resolutions: {rebass/styled-components: 3.2.x}, it's my bad to put resolutions: { "styled-components": "3.2.x"}. When starting the app, UI is always broken, say 'there might be two copy of styled-component', so I ran yarn why styled-components, only 3.4.x was listed. I was so confused where the other styled-components came from and spent a lot of time to investigate until I searched in yarn.lock, then figured out it's the resolutions.
@DanielRuf

This comment has been minimized.

Sign in to view
Copy link
Contributor

@DanielRuf DanielRuf commented Jun 5, 2019

So this is a feature request?
@sabrinaluo

This comment has been minimized.

Sign in to view
Copy link
Author

@sabrinaluo sabrinaluo commented Jun 5, 2019

Yes, should be a feature request. Updated the issue type 😃 @DanielRuf

I first thought it's a bug. However, after your explanation, I understand it's not a bug yarn itself but most likely a mistake by users.
@rally25rs

This comment has been minimized.

Sign in to view
Copy link
Contributor

@rally25rs rally25rs commented Jun 7, 2019

Maybe we could handle this by checking "if a resolution does not contains a wildcard * or a / then print a warning"? I'm not sure if having a resolution without one of those is really ever a valid use case...
@rally25rs

This comment has been minimized.

Sign in to view
Copy link
Contributor

@rally25rs rally25rs commented Jun 7, 2019

I'm also going to rename this issue to make it more indicative of the feature request.
@rally25rs rally25rs changed the title `yarn why` should list usage for resolutions yarn should warn if a resolution appears to attempt to change a top level dependency Jun 7, 2019
@amogh-jrules

This comment has been minimized.

Sign in to view
Copy link

@amogh-jrules amogh-jrules commented Jun 21, 2019

Hi can I take this up?
@xiaoguizi87

This comment has been minimized.

Sign in to view
Copy link

@xiaoguizi87 xiaoguizi87 commented Aug 16, 2019

can I take this up?
@DanielRuf

This comment has been minimized.

Sign in to view
Copy link
Contributor

@DanielRuf DanielRuf commented Aug 16, 2019

Sure, do you need help with creating a PR or do you know the needed steps?
@grdnrt grdnrt mentioned this issue Oct 14, 2019
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
cat-feature good first issue
5 participants
@sabrinaluo @DanielRuf @rally25rs @amogh-jrules @xiaoguizi87
You can’t perform that action at this time.