-
Notifications
You must be signed in to change notification settings - Fork 2.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Renovate doesn't update yarn.lock anymore with --install.frozen-lockfile true
in .yarnrc
#11356
Comments
First: Second: we can add We should never overwrite the repo yarnrc anymore, as this will confuse many other renovate users. |
Hopefully cli overrides |
The CLI cannot override arguments set in the |
That's a pity! I don't think it's best design either, but I suppose it's too late to change. In that case we need to read, massage and write back the file if it exists |
I would then log this as a warning if I don't like to support this bad practice 😕 |
I don't like it either, but are you sure it's not just our "opinion"? e.g. does the Yarn project recommend against putting it into |
On the other hand I agree that us needing to massage a file before we can get |
I didn't know it was a bad practice, I thought in fact it was a way to solve the problem that running |
I think you can run "yarn install --frozen-lockfile" in CI and production as an alternative. |
It's definitely a good idea to do immutable/frozen installs in CI, staging and production |
Yes, I think I added the flag in |
@rarkins just found this convo after renovate (GitHub app) started to fail on my repo with the same message. I checked and it is v26 running there now. Are you folks considering reverting this change or is the official view that we should get rid of yarnrc and use command line flag instead? |
@jraoult we aren't considering reverting it, but happy to accept a PR which reintroduces the "massaging" of
|
@rarkins After thinking about what @viceice said, it thought about the rationale for having Turns out we don't need it because all our CI tools already run yarn with the |
For the CI could be OK, but when I deploy in production I wanted to be sure to not forget the flag when running |
Reproduction forked to https://github.com/renovate-reproductions/11356 |
Fixes renovatebot#11356. Fixes so that Renovate can run on repos that have `--install.frozen-lockfile true` in their .yarnrc. WIP - feedback needed!
Fixes renovatebot#11356. Fixes so that Renovate can run on repos that have `--install.frozen-lockfile true` in their .yarnrc. WIP - feedback needed!
Fixes renovatebot#11356. Fixes so that Renovate can run on repos that have `--install.frozen-lockfile true` in their .yarnrc. WIP - feedback needed!
Fixes renovatebot#11356. Fixes so that Renovate can run on repos that have `--install.frozen-lockfile true` in their .yarnrc. WIP - feedback needed!
Fixes renovatebot#11356. Fixes so that Renovate can run on repos that have `--install.frozen-lockfile true` in their .yarnrc. WIP - feedback needed!
Fixes renovatebot#11356. Fixes so that Renovate can run on repos that have `--install.frozen-lockfile true` in their .yarnrc. WIP - feedback needed!
Fixes renovatebot#11356. Fixes so that Renovate can run on repos that have `--install.frozen-lockfile true` in their .yarnrc. WIP - feedback needed!
Fixes renovatebot#11356. Fixes so that Renovate can run on repos that have `--install.frozen-lockfile true` in their .yarnrc. WIP - feedback needed!
🎉 This issue has been resolved in version 32.241.6 🎉 The release is available on:
Your semantic-release bot 📦🚀 |
How are you running Renovate?
Self-hosted
Please select which platform you are using if self-hosting.
GitLab self-hosted
If you're self-hosting Renovate, tell us what version of Renovate you run.
v26.3.0
Describe the bug
Renovate doesn't update the
yarn.lock
file anymore if the option--install.frozen-lockfile true
is present in the.yarnrc
file.I think I already found the reason for that, in this commit.
I created a minimal reproduction repository, but currently is not failing because it's still using the v25.76.2.
Many thanks for your support.
Relevant debug logs
Logs
Have you created a minimal reproduction repository?
I have linked to a minimal reproduction repository in the bug description
The text was updated successfully, but these errors were encountered: