[epic] vinyl-fs version 3.0.0 #1604
Comments
|
Updated! We've had some excellent contributions by @hgwood and @tmcgee123 |
|
Almost all these are wrapping up. We need to get some more tests in place for the changes and solidify the "Support functions for all options" stuff. Still looking for someone to tackle the uid/gid stuff. |
|
What about a smaller update to vinyl? With this issue on minimatch everyone gets lots of sec. alerts :) |
|
@odino no, those alerts don't matter. If you are passing user input directly to gulp, you have bigger problems. |
|
That's true, but those alerts will keep coming due to gulp requiring the If there's an easy way to upgrade to a version that has the patch I would
|
|
@phated the UID/GID item should be checked off, no? |
|
@phated any update on ^^? |
|
re @odino and security fix. this could be fixed just by updating the version of vinyl-fs that gulp installs. Currently you get This is a problem for anyone requiring |
@atomantic a lot of things was changed since vinyl-fs@0.3.14 https://github.com/gulpjs/vinyl-fs/blob/master/CHANGELOG.md#v0314-20150921-2357-0000 so it is impossible just bump the version. |
|
@strugee @ilanbiala thanks, I've updated the list. However, a few more things had to be added to account for things I've found during the test refactor. |
|
got it. Yeah, I noticed tests pass as long as I upgrade vinyl-fs to latest version and include glob-watcher 0.0.8--but that's still a really old version of glob-watcher. |
|
@atomantic the gulp tests are just a smoke test because each underlying library has a full test suite that we aren't going to duplicate. Extreme amounts of stuff has changed and you should not assume everything will just work. |
|
I've submitted the test refactor for review at gulpjs/vinyl-fs#194 - I'd like to get feedback before I push it so feel free to comment. |
|
Hey - any news on this? |
|
@pgilad I'm pretty diligent about updating this thread when there are updates, so no. You can follow the linked issues to see progress on the outstanding items (and even contribute). The minimatch warning you mention doesn't mean anything because you aren't passing raw user input to the gulp methods (or you shouldn't be). |
|
@phated First, thanks for all the awesome contributions you continue to make to Gulp. Second, looking at the |
|
@addyosmani unfortunately that commit didn't solve everything and caused problems with the symlink method so it was never merged. There are some more option normalizations that are in progress, so I have been focusing on the glob-stream and vinyl dependencies. |
|
Thanks but we have many issues opened throughout the organization. You can see everything labeled as "help wanted" at https://github.com/issues?utf8=%E2%9C%93&q=is%3Aopen+org%3Agulpjs+label%3A%22help+wanted%22+ We are tackling some of them this weekend at HackIllinois |
|
Amazing work, I'll wait to next week. Good luck at HackIllinois |
|
This is getting really close. I need help with gulpjs/vinyl-sourcemap#19 |
|
Any progress on this ? Looks like almost things from list are already done. May be I can help somehow ? gulp still have very old vinyl-fs dependency, and I get following warning each time I install/upgrade gulp: ├─┬ gulp@3.9.1 |
|
@anru If you check out that link phated posted there's a bunch of issues left in the org, I think those are all related to the upgrade |
|
@anru I believe the roadmap is here: #1945 More than the warning the main issue of the current version is the incompatibility with Node > 6. Later this year 8 will be LTS and then it will become more problematic to have gulp as a dependency. I previously said I'm willing to help, I'll probably take a look at doc related issues. |
|
#1945 is gulp 4 roadmap. And may be we could release gulp 3 with updated |
|
Any updates on this? The NSP check fails on all my projects which are using Gulp when scanning also dev dependencies :( https://nodesecurity.io/advisories/118 |
|
@subesokun |
|
Is the "Fix Symlink TODOs (issues need to be created)" item the only thing that's left to do here? |
|
@kyleholzinger yes, it is a tough problem we are trying to solve over on the vinyl-fs repo. |
|
What can I do to help move this forward? |
|
@nwhitmont the work is happening at gulpjs/vinyl-fs#254 |
|
We've wrapped up the symlink/junction work. There's just some documentation/rebasing/cleanup work to do on vinyl-fs before the 3.0 release. If you are interested in this stuff, please go try out the master branch and give us feedback - there are some big changes over there. |
|
Documentation has been finalized. Rebase has been completed but it needs review. Check out gulpjs/vinyl-fs#284 if you are interested in reviewing. |
|
Based on the reactions, I expected more review/feedback on the rebase Anyway, 3.0.0 has been published. Changelog at https://github.com/gulpjs/vinyl-fs/releases/tag/v3.0.0 |
|
Thanks for your awesome job @phated |
|
I tried to have a look but it was a bit overwhelming not knowing anything of the internals. I second @CKGrafico, thank you and the whole team! |
I'm creating this issue to get some more visibility on outstanding issues in vinyl-fs for it to reach 3.0 (which we'd like to ship with gulp 4).
If you are able to tackle any of these, the help would be very much appreciated.
Decouple opening and closing of file descriptors from src and dest - Decouple opening and closing of file descriptors from src and dest vinyl-fs#158Support changing uid/gid from the vinyl object to the file on disk - Support changing uid/gid from the vinyl object to the file on disk vinyl-fs#157Support setting setuid/setgid/sticky bits - Support setting setuid/setgid/sticky in updateMetadata vinyl-fs#156Support functions for all options - Support functions for all options vinyl-fs#139kebabCase the filenames - kebabCase the filenames vinyl-fs#152vfs.dest(outfolder, { base.. }) ignores outfolder? - vfs.dest(outfolder, { base.. }) ignores outfolder? vinyl-fs#141The mkdirp module doesn't handle modes in the best way - The mkdirp module doesn't handle modes in the best way vinyl-fs#165Account for process.umask - Account for process.umask vinyl-fs#166Test refactor - (Don't Merge) Test refactor vinyl-fs#194SeparateprepareWriteinto own module - Proposal to allow files to pass throughdestwithout writing them to disk. vinyl-fs#193Fix Symlink TODOs (issues need to be created)Sink the symlink stream - Needs to sink the symlink stream vinyl-fs#195Get https://github.com/gulpjs/vinyl-sourcemap up-to-snuffThe text was updated successfully, but these errors were encountered: