Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update package.json dependencies to latest versions #2746

Closed
DonJayamanne opened this issue Oct 2, 2018 · 3 comments
Closed

Update package.json dependencies to latest versions #2746

DonJayamanne opened this issue Oct 2, 2018 · 3 comments
Assignees
@brettcannon
Labels
debt Covers everything internal: CI, testing, refactoring of the codebase, etc. important Issue identified as high-priority
Milestone
2018, week 40 - O...

Comments

@DonJayamanne
Copy link

DonJayamanne commented Oct 2, 2018
edited

We need to do this before we end up in a situation where our dependencies are too old.
We've been caught out to this in the past, and once again now #2745.
Need to review all dependencies and update for the next release.
@DonJayamanne DonJayamanne changed the title Update dependencies to latest versions Update package.json dependencies to latest versions Oct 2, 2018
@DonJayamanne DonJayamanne added needs PR debt Covers everything internal: CI, testing, refactoring of the codebase, etc. important Issue identified as high-priority labels Oct 2, 2018
@DonJayamanne
Copy link
Author

@brettcannon @qubitron
Please could you ensure this gets added into the next sprint.

grallc added a commit to grallc/vscode-python that referenced this issue Oct 2, 2018
@grallc
Updated package.json dependencies to latest version microsoft#2746
d88d5b2
grallc added a commit to grallc/vscode-python that referenced this issue Oct 2, 2018
@grallc
Updated package.json dependencies to latest version microsoft#2746
8838461
@grallc grallc mentioned this issue Oct 2, 2018
Closed
6 tasks
@brettcannon
Copy link
Member

This is a matter of us getting on to Component Governance, as that will let us unpin our dependencies, but that's a bigger task as it requires setting up a parallel build of the extension internally in Azure DevOps.

@brettcannon
Copy link
Member

We are now registered with Component Governance, so we can now begin unpinning our dependencies. We should probably start by switching to the carrot operator and see how that goes and then consider further upgrade beyond that on a case-by-case basis.

@brettcannon brettcannon mentioned this issue Oct 16, 2018
Merged
6 tasks
@brettcannon brettcannon self-assigned this Oct 17, 2018
@lock lock bot locked as resolved and limited conversation to collaborators Nov 14, 2018
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@brettcannon brettcannon

Labels
debt Covers everything internal: CI, testing, refactoring of the codebase, etc. important Issue identified as high-priority
Projects
None yet
Milestone
2018, week 40 - October Sprint 1
Development

No branches or pull requests
2 participants
@brettcannon @DonJayamanne