Add support to specify the package.json for no-extraneous-dependencies rule #685
Conversation
ramasilveyra
force-pushed
the
fix-root-pkg
branch
from
a32bde0
to
a945976
Compare
|
@ljharb @benmosher I found time to finish this pr 😀, It's ready for a review. I choose the |
ramasilveyra
force-pushed
the
fix-root-pkg
branch
2 times, most recently
from
efc2efa
to
e2fb13b
Compare
|
It looks like the appveyor failing is not related to this pr: #695 (comment). |
ramasilveyra
force-pushed
the
fix-root-pkg
branch
from
e2fb13b
to
2a0410d
Compare
2 similar comments
There was a problem hiding this comment.
Hi @ramasilveyra! Thanks a lot for the PR! (and sorry for the late reply)
This does not merge the dependencies from multiple packages. So from what I understand, if in your monorepo:
- you define all the dependencies in the nested package.json, this works with the (old and) default behaviour
- You define all the dependencies in the root package.json, this works by overriding the
packagePathoption - You define dependencies in multiple package.json files, and this will not work.
In the last case, maybe we could fetch both the package.json linked in packagePath and the closest package.json and merge them?
I'm fine with trying out this solution and trying my proposal (or something else) later if people find errors.
| @@ -27,6 +27,12 @@ You can also use an array of globs instead of literal booleans: | |||
|
|
|||
| When using an array of globs, the setting will be activated if the name of the file being linted matches a single glob in the array. | |||
|
|
|||
| Also there is one more option called `packagePath`, this option is to specify the path of the package.json. | |||
There was a problem hiding this comment.
We should indicate that this is relative to the current working directory (which is what I'm understanding from the code).
| const pkg = readPkgUp.sync({cwd: context.getFilename(), normalize: false}) | ||
| if (!pkg || !pkg.pkg) { | ||
| const pkg = packagePath | ||
| ? JSON.parse(fs.readFileSync(packagePath, 'utf8')) |
There was a problem hiding this comment.
If the file is not found, the rule should report an error indicating that the file could not be found.
If the file could not be parsed, the rule should report an error indicating that too.
Please add tests for those cases :)
There was a problem hiding this comment.
...
} catch (e) {
if (packagePath && e.code === 'ENOENT') {
context.report({ message: 'The package.json file could not be find.' })
}
if (packagePath && e instanceof SyntaxError) {
context.report({ message: 'The package.json file could not be parsed due to syntax errors.' })
}
return null
}
...
doesn't work because context.report( needs a loc or node, cc: http://eslint.org/docs/developer-guide/working-with-rules#contextreport
But maybe I can throw the error in those cases? Or log in console with console.error?
There was a problem hiding this comment.
You could report the error at the beginning of the file, like here.
I would advise against throwing an error, as ESLint doesn't properly handle them, the process will crash and the error will be hard to understand. By reporting it this way, the user will get an error for pretty much every file, but it will be much clearer and visible than a wondering console.error.
if (packagePath && err.code === 'ENOENT') {
// find --> found
context.report({ message: 'The package.json file could not be found.' })
}
if (packagePath && err instanceof SyntaxError) {
// Change the error message to this and append the error message
context.report({ message: 'The package.json file could not be parsed: ' + err.message})
}There was a problem hiding this comment.
Good hack! You are right, thanks for your comments and explanation!
Now this change request is fixed.
| try { | ||
| const pkg = readPkgUp.sync({cwd: context.getFilename(), normalize: false}) | ||
| if (!pkg || !pkg.pkg) { | ||
| const pkg = packagePath |
There was a problem hiding this comment.
Rename pkg to packageContent
ramasilveyra
force-pushed
the
fix-root-pkg
branch
from
2a0410d
to
2b31ca7
Compare
2 similar comments
ramasilveyra
force-pushed
the
fix-root-pkg
branch
from
2b31ca7
to
708f086
Compare
ramasilveyra
force-pushed
the
fix-root-pkg
branch
from
708f086
to
57d80f9
Compare
ramasilveyra
changed the title
|
PR title and commit title changed to |
1 similar comment
ramasilveyra
force-pushed
the
fix-root-pkg
branch
from
57d80f9
to
83489b8
Compare
|
@jfmengels test case for when the package.json is not found added |
| }), | ||
| test({ | ||
| code: 'import "not-a-dependency"', | ||
| options: [{packagePath: path.join(__dirname, '../../../doesnt-exist.json')}], |
There was a problem hiding this comment.
This kind of highlights a weirdness of this rule: you can specify a file that is not named package.json, which I don't think makes sense. I'm wondering whether packagePath should not rather be packageDir and be the path to the folder containing package.json.
i.e. [{packagePath: path.join(__dirname, '../../../package.json')}] --> [{packageDir: path.join(__dirname, '../../../')}]
What do you think? 🤔
There was a problem hiding this comment.
Brainstorming: The name of this property could be named also as manifestFilePath. https://en.wikipedia.org/wiki/Manifest_file
There was a problem hiding this comment.
But yes, packageDir seems better! I will do that.
There was a problem hiding this comment.
Yes, packageDir seems better, less confusing for npm users :)
ramasilveyra
force-pushed
the
fix-root-pkg
branch
from
f456871
to
d6586bd
Compare
|
Can we specify if it should look also in |
ramasilveyra
changed the title
|
No, bower should not be used by anyone, and I would be very against supporting it. |
|
@ljharb I understand. Can you share some information about why you think that? I'm just curious and looking to learn more. Thanks |
|
@johnsardine to start: 1) there never was a reason for bower to exist, npm has always been also for frontend code. 2) bower isn't a package manager, it's a CLI over curl-to-github, and one should use a proper package manager (that allows for nested dependencies when it is needed). 3) anything on bower that isn't on npm isn't worth using, and there'll be a plethora of better alternatives that are on npm. |
ramasilveyra
force-pushed
the
fix-root-pkg
branch
from
d6586bd
to
3cb927d
Compare
|
FYI @ljharb @jfmengels I just resolved the conflict on the CHANGELOG.md (rebase). |
There was a problem hiding this comment.
I don't see any major problems, but I'd prefer to defer to @benmosher here.
2 similar comments
|
It seems this PR is waiting on additional review which has not been performed for several months. Can we just merge this? If any major issues show up it will reported here and we can fix them or revert. |
|
|
👍🏻 thanks for review 
Add support for nested package.json, projects with a folder architecture with internals package.json files (see #458).
Discussion
Actually change the behavior of use the closest package.json to use the root package.json breaks the rule when you want to check the dependencies from an internal package.json, so I have this two paths in mind:
Per default get the dependencies from the closest package.json and if the option
getPkgFromRootis true get the dependencies from the root package.json file.Add an option like
pkgPathto the rule to be able to specify the package.json path and if is null just find the closest package.json like the last version. IMHO this looks better, it's more flexible.What do you think about this?
12/24/2016 update
I choose the 2. path, the option is called
packagePath.01/29/2017 update
Commit name changed to
Add support to specify the package.jsonas this solution doesnt fully solve all the cases of #458 Look: #685 (review)