Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Broken generated pnpm lock file (ERR_PNPM_ERR_PNPM_LOCKFILE_MISSING_DEPENDENCY) #17492

Closed
1 of 4 tasks
diginikkari opened this issue Jun 8, 2023 · 5 comments · Fixed by #17613
Closed
1 of 4 tasks

Broken generated pnpm lock file (ERR_PNPM_ERR_PNPM_LOCKFILE_MISSING_DEPENDENCY) #17492

diginikkari opened this issue Jun 8, 2023 · 5 comments · Fixed by #17613
Assignees
@meeroslav
Labels
outdated scope: js type: bug

Comments

@diginikkari
Copy link
Contributor

diginikkari commented Jun 8, 2023
edited
Loading

Current Behavior

I'm using @nx/webpack:webpack executor with "generatePackageJson": true.

When I'm building production build of app and deploying it I'm getting following error:

Lockfile is up to date, resolution step is skipped
 WARN  Broken lockfile: no entry for '/strip-ansi/6.0.1' in pnpm-lock.yaml
 ERR_PNPM_ERR_PNPM_LOCKFILE_MISSING_DEPENDENCY  The lockfile is broken! Resolution step will be performed to fix it.

Expected Behavior

lock file shoud be correct and there should be no error.

GitHub Repo

https://github.com/diginikkari/nx-next

Steps to Reproduce

  1. add app with webpack plugin pnpm nx g @nx/react:app my-app --bundler=webpack
  2. enable 'generatePackageJson' in ´project.json´
  3. install glob as dev dependency pnpm install -d [email protected] (this will add [email protected] dependency)
  4. install msw as dependency pnpm install msw (this will add [email protected] dependency)
  5. add import { rest } from 'msw'; to app to include msw as dependency for app
  6. build app pnpm nx run my-app:build:production
  7. copy generated dist folder to outside of workspace and run 'pnpm install' inside it.

Nx Report

Node   : 20.2.0
   OS     : darwin-arm64
   pnpm   : 8.6.1
   
   nx                 : 16.4.0-beta.2
   @nx/js             : 16.4.0-beta.2
   @nx/jest           : 16.4.0-beta.2
   @nx/linter         : 16.4.0-beta.2
   @nx/workspace      : 16.4.0-beta.2
   @nx/cypress        : 16.4.0-beta.2
   @nx/devkit         : 16.4.0-beta.2
   @nx/esbuild        : 16.4.0-beta.2
   @nx/eslint-plugin  : 16.4.0-beta.2
   @nx/next           : 16.4.0-beta.2
   @nx/node           : 16.4.0-beta.2
   @nx/react          : 16.4.0-beta.2
   @nx/storybook      : 16.4.0-beta.2
   @nrwl/tao          : 16.4.0-beta.2
   @nx/vite           : 16.4.0-beta.2
   @nx/web            : 16.4.0-beta.2
   @nx/webpack        : 16.4.0-beta.2
   nx-cloud           : 16.0.5
   typescript         : 5.1.3
   ---------------------------------------
   Community plugins:
   @mands/nx-playwright : 0.6.2
   ---------------------------------------

Failure Logs

No response

Operating System

  • macOS
  • Linux
  • Windows
  • Other (Please specify)

Additional Information

I tried it with 16.3.2 and with latest beta 16.4.0-beta.2.

Lockfile generation seems to select /[email protected] entry into the generated lock file even though there is only string-width: 4.2.3 dependency in app's dependencies.
@diginikkari
Copy link
Contributor Author

I found a workaround by adding manual step to run pnpm install --fix-lockfile --lockfile-only in dist folder after build.

@halfbakedsneed
Copy link
Contributor

I've just experienced this same issue with set of different private packages. I think the issue has to do with the fact that the same dependency (in OP's case [email protected]) appears multiple times in the dependency tree, with certain instances being aliased.

Dependency Tree:

NOTE: This is not the entire dependency tree, I have trimmed it for the sake of brevity.

glob 10.2.6
└─┬ jackspeak 2.2.1
  └─┬ @isaacs/cliui 8.0.2
    └── strip-ansi 6.0.1 // aliased as `strip-ansi-cjs`
msw 1.2.2
└─┬ inquirer 8.2.5
  └── strip-ansi 6.0.1 // not aliased

During initial graph construction (pre-pruning), the package name selected for the node with the key /strip-ansi/6.0.1 is the aliased package name, strip-ansi-cjs, not strip-ansi (this happens here: findPackageName). This appears to be problematic, as only msw is imported within the nx project being built. This means the pruning process will simply omit the strip-ansi-cjs node from the resulting lock file.

If I patch findPackageName to simply always return the root part of the key (i.e /<this part>/x.y.z) instead of searching the snapshots for a package name, it resolves this particular issue. However, I suspect this is a poor long-term fix and may cause other issues.

@meeroslav
Copy link
Contributor

meeroslav commented Jun 14, 2023
edited
Loading

@halfbakedsneed can you please open a new issue, as these two issues are not related. Please link it to this one so that we can easily track it.

Actually they might be related after all.

@meeroslav
Copy link
Contributor

@diginikkari, this is an interesting issue. Thank you for the reproduction, I will have to dig deeper to see why the dependencies are not correct.

@meeroslav meeroslav mentioned this issue Jun 15, 2023
Merged
@github-actions
Copy link

This issue has been closed for more than 30 days. If this issue is still occuring, please open a new issue with more recent context.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Jul 22, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@meeroslav meeroslav

Labels
outdated scope: js type: bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix(core): ensure correct package name matching when parsing pnpm lock file meeroslav/nx
4 participants
@meeroslav @diginikkari @FrozenPandaz @halfbakedsneed