Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Maintenance: manually bump @aws-cdk/cli-lib-alpha #3117

Open
1 of 2 tasks
dreamorosi opened this issue Sep 26, 2024 · 2 comments · Fixed by #3118
Open
1 of 2 tasks

Maintenance: manually bump @aws-cdk/cli-lib-alpha #3117

dreamorosi opened this issue Sep 26, 2024 · 2 comments · Fixed by #3118
Labels
bug-upstream This item is related to a bug caused by upstream dependency internal PRs that introduce changes in governance, tech debt and chores (linting setup, baseline, etc.) on-hold This item is on-hold and will be revisited in the future

Comments

@dreamorosi
Copy link
Contributor

Summary

While we use Dependabot for automatically updating our dependencies, the @aws-cdk/cli-lib-alpha is being excluded by the updates (example) despite being included in the config.

We should update the dependency manually until we find a solution.

Why is this needed?

With the other AWS CDK related dependencies moving forward with versions and this one being left behind, the integration tests fail.

We need to manually update so that we can continue running the tests.

Which area does this relate to?

Other

Solution

No response

Acknowledgment

Future readers

Please react with 👍 and your use case to help us understand customer demand.
@dreamorosi dreamorosi added internal PRs that introduce changes in governance, tech debt and chores (linting setup, baseline, etc.) confirmed The scope is clear, ready for implementation labels Sep 26, 2024
@dreamorosi dreamorosi self-assigned this Sep 26, 2024
@dreamorosi dreamorosi moved this from Triage to Working on it in Powertools for AWS Lambda (TypeScript) Sep 26, 2024
@dreamorosi dreamorosi mentioned this issue Sep 26, 2024
Merged
@github-project-automation github-project-automation bot moved this from Working on it to Coming soon in Powertools for AWS Lambda (TypeScript) Sep 26, 2024
@github-actions GitHub Actions
Copy link
Contributor

⚠️ COMMENT VISIBILITY WARNING ⚠️

This issue is now closed. Please be mindful that future comments are hard for our team to see.

If you need more assistance, please either tag a team member or open a new issue that references this one.

If you wish to keep having a conversation with other community members under this issue feel free to do so.

@github-actions github-actions bot added pending-release This item has been merged and will be released soon and removed confirmed The scope is clear, ready for implementation labels Sep 26, 2024
@dreamorosi dreamorosi added discussing The issue needs to be discussed, elaborated, or refined and removed pending-release This item has been merged and will be released soon labels Sep 26, 2024
@dreamorosi dreamorosi moved this from Coming soon to On hold in Powertools for AWS Lambda (TypeScript) Sep 26, 2024
@dreamorosi dreamorosi reopened this Sep 26, 2024
@github-project-automation github-project-automation bot moved this from On hold to Pending review in Powertools for AWS Lambda (TypeScript) Sep 26, 2024
@dreamorosi dreamorosi moved this from Pending review to On hold in Powertools for AWS Lambda (TypeScript) Sep 26, 2024
@dreamorosi
Copy link
Contributor Author

Reopening the issue to track remaining tasks on this area.

It's still unclear why exactly Dependabot is not seeing the version, but @sthulb who has investigated the issue suggests it might be related to it being a pre-release.

Dependabot seems to ignore the latest release when checking for updates as evidenced by the logs here:
image

Looking at the Dependabot repo, there seem to be at least two related issues, one of which is directly related to our case as it involves an AWS CDK package:

I have left a comment under both, hoping they would get some traction given that a high level exploration of the Dependabot codebase seems to imply this type of update should work.

Depending on whether this is a bug on Dependabot side, the root cause of the issue could be that the package is published using a pre-release suffix while being tagged as latest which might confuse the bot. We could explore the option of asking CDK to publish pre-releases with the correct tag (i.e. alpha) but before doing this we should try reproducing the issue with a dummy package and see if having a different tag with the same version pattern would fix the issue.

We have also left a comment under the RFC for the package on CDK side to see what's the progress on the package becoming stable, which might probably bypass the issue entirely.

@dreamorosi dreamorosi removed their assignment Sep 26, 2024
@dreamorosi dreamorosi added the bug-upstream This item is related to a bug caused by upstream dependency label Sep 26, 2024
@dreamorosi dreamorosi added on-hold This item is on-hold and will be revisited in the future and removed discussing The issue needs to be discussed, elaborated, or refined labels Oct 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug-upstream This item is related to a bug caused by upstream dependency internal PRs that introduce changes in governance, tech debt and chores (linting setup, baseline, etc.) on-hold This item is on-hold and will be revisited in the future
Projects
Powertools for AWS Lambda (TypeScript)
Status: On hold
Milestone
No milestone
1 participant
@dreamorosi