Closed Bug 1364010 Opened 7 years ago Closed 7 years ago

Update JS dependencies

Categories

(Tree Management :: Treeherder, enhancement, P2)

Product:
Tree Management
Component:
Treeherder
Type:
enhancement

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: emorley, Assigned: emorley)

References

Details

Attachments

(2 files)

[treeherder] mozilla:update-js-deps > mozilla:master
47 bytes, text/x-github-pull-request
camd
: review+
Details | Review
[treeherder] mozilla:update-toarrayfilter > mozilla:master
47 bytes, text/x-github-pull-request
Details | Review 
We have quite a few that are out of date:
https://david-dm.org/mozilla/treeherder
Attachment #8866707 - Flags: review?(cdawson)
Attachment #8866707 - Flags: review?(cdawson) → review+
Commits pushed to master at https://github.com/mozilla/treeherder

https://github.com/mozilla/treeherder/commit/7aeee8383d173741a0f16a31a2dbb3c7f3ab1a6d
Bug 1364010 - Update to nodejs 7.10.0

https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V7.md#7.10.0

https://github.com/mozilla/treeherder/commit/0c42d47c9d123a882668aae6f97716a81d2e85f5
Bug 1364010 - Update JS dependencies

Packages have been updated as follows:
* `angular*`: Latest patch version, since it doesn't follow semver.
* `react*`: Latest patch version, since in 15.5 some obtrusive
  deprecation warnings were added, and `enzyme`'s peer-dependencies
  need adjusting too.
* `enzyme`: Unchanged, since the newer minor version gives warnings.
* all other packages have been bumped to their latest minor version.

This was performed using:
```
sudo yarn global add npm-check-updates
ncu --upgrade --upgradeAll --semverLevel minor
ncu --upgrade --upgradeAll --semverLevel major --reject '/^(angular|react|enzyme).*/'
```

In addition, `karma-coverage-istanbul-reporter`, `taskcluster-client`
and `hawk` have been bumped to the latest major versions since their
changelogs don't show any breaking changes that impact us.

The lock file was then regenerated using:
```
rm -rf node_modules/ yarn.lock
yarn install --no-bin-links
```

At some point later we'll want to perform the more involved `angular*`,
`react*`, `enzyme`, `jquery` and `neutrino*` updates.
Status: ASSIGNED → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
Commit pushed to master at https://github.com/mozilla/treeherder

https://github.com/mozilla/treeherder/commit/4d5c0a80e1d79afb20f821b4cfddde0c5652b51c
Bug 1364010 - Update angular-toarrayfilter from 1.0.1 to 1.0.2

The only change is the move of `karma` from angular-toarrayfilter's
`dependencies` to `devDependencies`, which stops us unnecessarily
pulling in an ancient version of karma, and the resultant security
warnings.
Depends on: 1364882
Depends on: 1364888
Depends on: 1364891
Depends on: 1364894
Blocks: 1317752
Depends on: 1387893
No longer depends on: 1364888, 1364891, 1364894
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: