New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(deps-dev): bump gatsby from 4.6.2 to 4.7.2, run [GitHubCommitActivity GitHubDeployments GitHubTotalDiscussion GitHubForks GitHubIssues GitHubHacktoberfest] #7624
Conversation
39186ea
to
6e5d0de
Compare
Bumps [gatsby](https://github.com/gatsbyjs/gatsby) from 4.6.2 to 4.7.2. - [Release notes](https://github.com/gatsbyjs/gatsby/releases) - [Changelog](https://github.com/gatsbyjs/gatsby/blob/master/CHANGELOG.md) - [Commits](https://github.com/gatsbyjs/gatsby/compare/gatsby@4.6.2...gatsby@4.7.2) --- updated-dependencies: - dependency-name: gatsby dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
6e5d0de
to
f6931a1
Compare
Looks like we'll have to bump to graphql v16+ in order to land this |
I'd forgotten about the graphql mess from #7230 & #7428 AIUI, this is blocked on the graphql upgrade to v16.x due to a transitive dependency of gatsby (graphql-compose/graphql-compose#374). At the same time, we can't update to v16.x of graphql because gatsby also has a transitive dependency issue with This mess has been dragging on a bit too long for my comfort level, though outside of trying to get the express-graphql project revived, or getting the gatsby folks to adjust their dependency tree to remove that one, I don't see what else we could do beyond swapping out our usage of gatsby altogether |
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
It is also doing my head in that we can't upgrade graphql but gatsby 4.7.2 itself requires |
Not sure I agree. This version of gatsby also a direct dependency on graphql-compose v9.0.6, which in turn introduces the requirement for graphql v16 as per specified dependency in https://github.com/graphql-compose/graphql-compose/blob/v9.0.6/package.json#L37 and the associated issue I linked above which confirms that, at least as far as i understand it. |
And I guess to clarify, it's a dev dependency, but that's still causing the TS build to blow up because of incompatible types. Perhaps we could find a way to ignore it or force a downgrade, but I still think the root cause is some conflicting grapghql version expectations with gatsby's tree
|
Right, so express-graphql wants graphql 15.4.0 I think the reason this is an issue for us specifically is because we also have something else (I forget what) which has graphql as a |
Perhaps we're closer to the same page after all then? Don't disagree with you in the general sense of gatsby users, but I'm simply saying I don't see a way for us to make this gatsby upgrade in a way that doesn't introduce the type issues. My hypothesis on possible resolution is still centered around graphql versioning, whether that's via us managing to get our entire tree to a v16+ world or trying to convince npm that graphql-compose explicitly needs graphql v16+. I'm happy to be proven wrong though if you or anyone else sees a path forward, so definitely feel free to reopen this. I originally went down the former path of trying to advance everything to v16 as I'd already forgotten about our graphql fun and that's why I'd pushed some extra commits (dependabot only bumped gatsby here). That still seems thoroughly blocked though, and I don't have the patience to try to investigate/battle more surgical options 😅 |
Actually, yes - you're right.. in the previous post, both of the links I posted are to dev dependencies 🤦 The relevant constraint for both packages is actually the
So you're right that If I just install gatsby on a clean project, it chooses graphql 15.8.0
so in theory (according to the constraints) the correct version of graphql to pair with this version of gatsby is 15.x ..but then using 15.x we hit graphql-compose/graphql-compose#374 so I guess maybe this version of gatsby actually is broken (or at least incompatible with tsc which may be.. not the same thing) and/or the I think I have now caught up |
I believe the technical term for all this is... fustercluck 🤣 |
Bumps gatsby from 4.6.2 to 4.7.2.
Release notes
Sourced from gatsby's releases.
Commits
db83523
chore(release): Publish7ef1fb6
fix(gatsby): Content Sync DSG bug (#34799) (#34818)d149291
chore(gatsby-plugin-mdx): Use MDX v1 for install instructions (#34774) (#34817)f672a67
chore(release): Publish07dccad
fix(gatsby-link): trailing slash undefined check for prod env (#34765) (#34766)1f30882
chore(release): Publish9e8dd90
chore(docs): UpdatetransformOptions
defaults (#34713)72b3586
chore(starter): Add minimal Typescript starter (#34688)62b07a0
chore(docs): Added requiredtype
attribute to resolver (#34716)0c04ce0
chore(docs): Update "Debugging HTML builds" to includegetServerData
(#34631)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)