Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[core] Upgrade the dependencies #16990

Merged
merged 1 commit into from
Aug 15, 2019
Merged

[core] Upgrade the dependencies #16990

merged 1 commit into from
Aug 15, 2019

Conversation

oliviertassinari
Copy link
Member

@oliviertassinari oliviertassinari commented Aug 13, 2019
edited
Loading

Bonus, closes #16953

@oliviertassinari oliviertassinari added the core Infrastructure work going on behind the scenes label Aug 13, 2019
@mui-pr-bot
Copy link

mui-pr-bot commented Aug 13, 2019
edited
Loading

Details of bundle changes.

Comparing: 7101bad...7413279

bundle parsed diff gzip diff prev parsed current parsed prev gzip current gzip
@material-ui/core +0.05% 🔺 +0.09% 🔺 328,898 329,073 89,914 89,994
@material-ui/core/Paper +0.23% 🔺 +0.23% 🔺 68,684 68,843 20,476 20,524
@material-ui/core/Paper.esm +0.26% 🔺 +0.22% 🔺 62,058 62,217 19,206 19,249
@material-ui/core/Popper 0.00% 0.00% 28,468 28,468 10,177 10,177
@material-ui/core/Textarea 0.00% 0.00% 5,094 5,094 2,136 2,136
@material-ui/core/TrapFocus 0.00% 0.00% 3,834 3,834 1,614 1,614
@material-ui/core/styles/createMuiTheme 0.00% 0.00% 16,386 16,386 5,826 5,826
@material-ui/core/useMediaQuery 0.00% 0.00% 2,541 2,541 1,059 1,059
@material-ui/lab +0.11% 🔺 +0.14% 🔺 152,999 153,172 46,659 46,726
@material-ui/styles +0.31% 🔺 +0.32% 🔺 51,401 51,560 15,290 15,339
@material-ui/system 0.00% -0.02% 15,658 15,658 4,361 4,360
Button +0.20% 🔺 +0.20% 🔺 78,687 78,846 24,044 24,092
Modal 0.00% +0.02% 🔺 14,346 14,346 5,011 5,012
Portal 0.00% 0.00% 2,907 2,907 1,318 1,318
Rating +0.23% 🔺 +0.20% 🔺 70,047 70,206 21,881 21,925
Slider +0.21% 🔺 +0.19% 🔺 74,362 74,521 23,056 23,100
colorManipulator 0.00% 0.00% 3,904 3,904 1,543 1,543
docs.landing +2.68% 🔺 0.00% 51,846 53,237 13,780 13,780
docs.main +1.37% 🔺 +1.28% 🔺 590,557 598,663 188,449 190,861
packages/material-ui/build/umd/material-ui.production.min.js +0.07% 🔺 +0.11% 🔺 299,897 300,092 86,270 86,369

Generated by 🚫 dangerJS against 7413279

@oliviertassinari oliviertassinari force-pushed the upgrade-dependencies-v16 branch 2 times, most recently from 2ba56bd to a52612e Compare August 13, 2019 22:07
merceyz
merceyz reviewed Aug 13, 2019
View reviewed changes
@merceyz
Copy link
Member

merceyz commented Aug 13, 2019

I highly suggest only updating the jss related packages and letting dependabot take care of the rest

merceyz
merceyz reviewed Aug 13, 2019
View reviewed changes
packages/material-ui-benchmark/package.json
@@ -32,6 +32,6 @@
"nodemod": "^1.5.19",
"react": "^16.3.0",
"react-jss": "^10.0.0-alpha.23",
"styled-system": "latest"
"styled-system": "^5.1.0"
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍 for specifying the version here, otherwise the benchmark results can differ depending on when yarn install was ran

@oliviertassinari oliviertassinari force-pushed the upgrade-dependencies-v16 branch from a52612e to 86177d2 Compare August 13, 2019 22:18
@oliviertassinari
Copy link
Member Author

oliviertassinari commented Aug 13, 2019
edited
Loading

@merceyz What would be the advantage? Is this about having x individual pull requests vs one? I find the granularity of dependabot interesting when batching everything doesn't work. I had a few occurrences of that in the past where I had to to the upgrade in dichotomy. dependabot would have helped.
So I find it interesting how the batch approach allows us to put the upgrade of the dependencies behind us, for some time.

@oliviertassinari oliviertassinari force-pushed the upgrade-dependencies-v16 branch from 86177d2 to 7413279 Compare August 13, 2019 22:34
@oliviertassinari
Copy link
Member Author

The bundle size increase seems JSS related: https://bundlephobia.com/[email protected].

@merceyz
Copy link
Member

merceyz commented Aug 14, 2019

What would be the advantage? Is this about having x individual pull requests vs one?

Easier to see what changed in the packages, and to see why stuff breaks.

So I find it interesting how the batch approach allows us to put the upgrade of the dependencies behind us, for some time.

dependabot is limited to 5 updates a week, turn off that limit and you can update everything at once (still seperate PRs)

@eps1lon
Copy link
Member

eps1lon commented Aug 14, 2019

dependabot is limited to 5 updates a week, turn off that limit and you can update everything at once (still seperate PRs)

Actually it's 10. It's only 5 because it still hasn't settled (there's a special note about this in the PR descriptions). We could bump it to let it settle but considering after two week olivier has already declared this experiment as failed I don't think there's a point to working with it anyway.

If we want to continue using it we can pump up the limit so that it can run on every dependency, settle on 10 and see if that is a good limit for weekly updates.

Biggest hurdle right now is the deduplication task. I would rather have it run on a schedule so that dependabot PRs are laser focused (i.e. just updating a single dependency). Deduplication is just about keeping node_modules size in check right now. The instances where duplicate packages are an issue are likely an issue with how we require some packages (e.g. declaring plugins by string and not require.resolve).

@merceyz
Copy link
Member

merceyz commented Aug 14, 2019

Actually it's 10. It's only 5 because it still hasn't settled (there's a special note about this in the PR descriptions).

I'm aware ;)

Biggest hurdle right now is the deduplication task

Dependabot already does this for us, they shouldn't collide (Not saying it doesn't as I saw it collide in one PR).
It would be possible to update the task to use their implementation instead.
https://github.com/dependabot/dependabot-core/blob/b6105f7d55d79a99d65e13641956002f697223b2/npm_and_yarn/helpers/lib/yarn/fix-duplicates.js#L15

@oliviertassinari
Copy link
Member Author

oliviertassinari commented Aug 14, 2019
edited
Loading

I think that dependabot is interesting no matter if we upgrade all the dependencies or not. The experiment seems to work so far. Dependabot delivers his promise, it works as we have configured it for. It's this nice weekly background job that help us keeping up to date with the dependencies.

@oliviertassinari oliviertassinari merged commit 4a8539b into mui:master Aug 15, 2019
@merceyz
Copy link
Member

merceyz commented Aug 15, 2019

Another reason to let dependabot do it: it updates the package.json file so to resolve a conflict you only have to run yarn

aloiret pushed a commit to aloiret/material-ui that referenced this pull request Aug 16, 2019
@oliviertassinari @aloiret-ed
[core] Upgrade the dependencies (mui#16990)
1874d4c
This was referenced Sep 4, 2019
Open
Open
@oliviertassinari oliviertassinari deleted the upgrade-dependencies-v16 branch February 8, 2020 20:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@merceyz merceyz merceyz left review comments

Assignees
No one assigned
Labels
core Infrastructure work going on behind the scenes
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Importing @material-ui/core into jest unit test in codesandbox breaks that test
4 participants
@oliviertassinari @mui-pr-bot @merceyz @eps1lon