-
Notifications
You must be signed in to change notification settings - Fork 9.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fixes composer.lock file which does not contain web-token/jwt-framewo… #32639
Fixes composer.lock file which does not contain web-token/jwt-framewo… #32639
Conversation
…rk package and its dependents even though composer.json does require it.
Hi @hostep. Thank you for your contribution
❗ Automated tests can be triggered manually with an appropriate comment:
You can find more information about the builds here ℹ️ Please run only needed test builds instead of all when developing. Please run all test builds before sending your PR for review. For more details, please, review the Magento Contributor Guide documentation. 🕙 You can find the schedule on the Magento Community Calendar page. 📞 The triage of Pull Requests happens in the queue order. If you want to speed up the delivery of your contribution, please join the Community Contributions Triage session to discuss the appropriate ticket. 🎥 You can find the recording of the previous Community Contributions Triage on the Magento Youtube Channel ✏️ Feel free to post questions/proposals/feedback related to the Community Contributions Triage process to the corresponding Slack Channel |
@gabrieldagama @sidolov probably this should be p0 priority issue |
@magento run all tests |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
✔ Approved.
Failing tests looks not related to changes from this PR.
Hi @ihor-sviziev, thank you for the review. |
@magento create issue |
@magento run Functional Tests B2B |
…composer-lock-2021-03-31
@magento run all tests |
Hi @hostep, thank you for your contribution! |
Thanks @gabrieldagama! What about my remark, does it make sense to add something like that in your static tests?
|
…rk package and its dependents even though composer.json does require it.
Description (*)
The
composer.lock
file in the2.4-develop
branch is incomplete.MC-38539 introduced the
web-token/jwt-framework
package in thecomposer.json
file, but somehow nobody thought about updating thecomposer.lock
file as well.These two files should always be in sync, otherwise dependencies that are needed might not get installed.
The
composer.lock
file changes in this PR causes the following dependencies to get installed:When checking where all these come from, it turns out they are all dependencies of
web-token/jwt-framework
:It would be appreciated if this PR gets merged as soon as possible so that when people try to modify something else in the composer files, they don't get confused with the current situation.
I don't mind if Magento core devs want to fix this internally themselves and this PR gets closed, I just want to see this fixed ASAP, thanks! 🙂
Related Pull Requests
Fixed Issues (if relevant)
None
Manual testing scenarios (*)
composer install
The lock file is not up to date with the latest changes in composer.json. You may be getting outdated dependencies. It is recommended that you run 'composer update' or 'composer update <package name>'.
web-token/jwt-framework
and its dependencies installedQuestions or comments
Can we add a static test that checks for the warning
The lock file is not up to date with the latest changes in composer.json. You may be getting outdated dependencies. It is recommended that you run 'composer update' or 'composer update <package name>'.
after callingcomposer validate
in order to prevent this from happening in the future?Note about documenting this in the release notes
This ticket doesn't need to be mentioned in the release notes, it makes no sense, thanks! 🙂
Contribution checklist (*)
Resolved issues: