Does fetch dependencies need to be updated? #11927
Comments
|
v3 of node-fetch is ESM package only which doesn't have such a good support in Meteor for now, so we'll have to test this thoroughly. |
|
I didn't know that. Thanks for pointing it out. How about whatwg-fetch? Doesn't seem like it utilizes any of ESM stuff, no? |
denihs
added
in-discussion
|
Hi @harryadel, are you willing to create a PR to update these packages and test everything out? I'm not sure if passing our automated tests would be enough, right @StorytellerCZ? I think the ideal would be to have an app using the |
|
@denihs passing tests would be a good first indicator that there isn't anything major broken. Given the nature of changes testing it in simple app or with one of the oauth that use fetch would be the most efficient. If things load from the package then I think things will go smoothly as then it is just making sure that they truly loaded as we expected and comparing with changelog to see if there is something that we are specifically using that we need to take into account. |
|
I had to stop using the Meteor fetch package and switch to using node-fetch 3.2.5 in order to be able to use the insecureHTTPParser option and fix compatibility with servers running Imperva Incapsula WAF. The requests had been failing with the HPE_INVALID_HEADER_TOKEN parse error. Is there really any good reason to not update Meteor fetch to use the latest version of node-fetch? |
|
@vlasky if node-fetch worked for you in a Meteor app, then we should be able to update this then. |
StorytellerCZ
added
the
good first issue
|
I guess this is solved now thanks to @jamauro |
The dependencies in fetch package are one major version behind. Should they be updated?
The text was updated successfully, but these errors were encountered: