mirror
/
renovate
mirror of https://github.com/renovatebot/renovate
2
0
Fork 0
Code Releases Activity
renovate/lib/modules/manager/npm/extract/post/locked-versions.ts

140 lines
4.7 KiB
TypeScript
Raw Permalink Blame History

import is from '@sindresorhus/is';
import semver from 'semver';
import { dirname, relative } from 'upath';
import { logger } from '../../../../../logger';
import type { PackageFile } from '../../../types';
import type { NpmManagerData } from '../../types';
import { getNpmLock } from '../npm';
import { getPnpmLock } from '../pnpm';
import type { LockFile } from '../types';
import { getYarnLock, getYarnVersionFromLock } from '../yarn';
export async function getLockedVersions(
packageFiles: PackageFile<NpmManagerData>[],
): Promise<void> {
const lockFileCache: Record<string, LockFile> = {};
logger.debug('Finding locked versions');
for (const packageFile of packageFiles) {
const { managerData = {} } = packageFile;
const { yarnLock, npmLock, pnpmShrinkwrap } = managerData;
const lockFiles: string[] = [];
if (yarnLock) {
logger.trace('Found yarnLock');
lockFiles.push(yarnLock);
if (!lockFileCache[yarnLock]) {
logger.trace(`Retrieving/parsing ${yarnLock}`);
lockFileCache[yarnLock] = await getYarnLock(yarnLock);
}
const { isYarn1 } = lockFileCache[yarnLock];
let yarn: string | undefined;
if (!isYarn1 && !packageFile.extractedConstraints?.yarn) {
yarn = getYarnVersionFromLock(lockFileCache[yarnLock]);
}
if (yarn) {
packageFile.extractedConstraints ??= {};
packageFile.extractedConstraints.yarn = yarn;
}
for (const dep of packageFile.deps) {
dep.lockedVersion =
lockFileCache[yarnLock].lockedVersions?.[
// TODO: types (#22198)
`${dep.depName}@${dep.currentValue}`
];
if (
(dep.depType === 'engines' || dep.depType === 'packageManager') &&
dep.depName === 'yarn' &&
!isYarn1
) {
dep.packageName = '@yarnpkg/cli';
}
}
} else if (npmLock) {
logger.debug(`Found ${npmLock} for ${packageFile.packageFile}`);
lockFiles.push(npmLock);
if (!lockFileCache[npmLock]) {
logger.trace('Retrieving/parsing ' + npmLock);
const cache = await getNpmLock(npmLock);
// istanbul ignore if
if (!cache) {
logger.warn({ npmLock }, 'Npm: unable to get lockfile');
return;
}
lockFileCache[npmLock] = cache;
}
const { lockfileVersion } = lockFileCache[npmLock];
let npm: string | undefined;
if (lockfileVersion === 1) {
if (packageFile.extractedConstraints?.npm) {
// Add a <7 constraint if it's not already a fixed version
if (
semver.satisfies('6.14.18', packageFile.extractedConstraints.npm)
) {
npm = packageFile.extractedConstraints.npm + ' <7';
}
} else {
npm = '<7';
}
} else if (lockfileVersion === 2) {
if (packageFile.extractedConstraints?.npm) {
// Add a <9 constraint if the latest 8.x is compatible
if (
semver.satisfies('8.19.3', packageFile.extractedConstraints.npm)
) {
npm = packageFile.extractedConstraints.npm + ' <9';
}
} else {
npm = '<9';
}
} else if (lockfileVersion === 3) {
if (!packageFile.extractedConstraints?.npm) {
npm = '>=7';
}
} else {
logger.warn(
{ lockfileVersion, npmLock },
'Found unsupported npm lockfile version',
);
return;
}
if (npm) {
packageFile.extractedConstraints ??= {};
packageFile.extractedConstraints.npm = npm;
}
for (const dep of packageFile.deps) {
// TODO: types (#22198)
dep.lockedVersion = semver.valid(
lockFileCache[npmLock].lockedVersions?.[dep.depName!],
)!;
}
} else if (pnpmShrinkwrap) {
logger.debug('Found pnpm lock-file');
lockFiles.push(pnpmShrinkwrap);
if (!lockFileCache[pnpmShrinkwrap]) {
logger.trace(`Retrieving/parsing ${pnpmShrinkwrap}`);
lockFileCache[pnpmShrinkwrap] = await getPnpmLock(pnpmShrinkwrap);
}
const packageDir = dirname(packageFile.packageFile);
const pnpmRootDir = dirname(pnpmShrinkwrap);
const relativeDir = relative(pnpmRootDir, packageDir) || '.';
for (const dep of packageFile.deps) {
const { depName, depType } = dep;
// TODO: types (#22198)
const lockedVersion = semver.valid(
lockFileCache[pnpmShrinkwrap].lockedVersionsWithPath?.[relativeDir]?.[
depType!
]?.[depName!],
);
if (is.string(lockedVersion)) {
dep.lockedVersion = lockedVersion;
}
}
}
if (lockFiles.length) {
packageFile.lockFiles = lockFiles;
}
}
}
View Git Blame Copy Permalink