lerna: Hoisting seems broken with npm5
Expected Behavior
lerna bootstrap --hoist should hoist dependencies when using npm@5
Current Behavior
The correct package.json is generated in the root directory but none of the hoisted deps are installed when a package-lock.json is present…which as far as I can tell (thanks npm docs!) can’t be toggled off.
lerna.json
{
"lerna": "2.0.0-rc.5",
"version": "4.0.0-rc.6",
"hoist": true,
"packages": [
"packages/*"
]
}
Your Environment
| Executable | Version |
|---|---|
lerna --version |
2.0.0-rc.5 |
npm --version |
5.0.0 |
| OS | Version |
|---|---|
| macOS | ? |
About this issue
- Original URL
- State: closed
- Created 7 years ago
- Reactions: 15
- Comments: 38 (14 by maintainers)
Commits related to this issue
- chore: no more hoisting Lerna doesn't really support npm@5 yet, see https://github.com/lerna/lerna/issues/856 — committed to tivac/modular-css by tivac 7 years ago
- Lots of cleanup. * Use node 6 instead of node 8 / npm 5 because of https://github.com/lerna/lerna/issues/856 * Use urijs instead of the node 7+ URI package. * Don't ask lerna to hoist all dependencie... — committed to magda-io/magda by kring 7 years ago
- Removed package-lock.json and added ignore option for lerna hoisting to work. https://github.com/lerna/lerna/issues/856 — committed to TNOCS/popsim by erikvullings 7 years ago
- Lots of cleanup. * Use node 6 instead of node 8 / npm 5 because of https://github.com/lerna/lerna/issues/856 * Use urijs instead of the node 7+ URI package. * Don't ask lerna to hoist all dependencie... — committed to magda-io/magda-ckan-connector by kring 7 years ago
- Lots of cleanup. * Use node 6 instead of node 8 / npm 5 because of https://github.com/lerna/lerna/issues/856 * Use urijs instead of the node 7+ URI package. * Don't ask lerna to hoist all dependencie... — committed to magda-io/magda-csw-connector by kring 7 years ago
- Lots of cleanup. * Use node 6 instead of node 8 / npm 5 because of https://github.com/lerna/lerna/issues/856 * Use urijs instead of the node 7+ URI package. * Don't ask lerna to hoist all dependencie... — committed to magda-io/magda-project-open-data-connector by kring 7 years ago
might be worth making a note of somewhere, node8 is coming out today and ships with (or soon will ship with npm5) Don’t want ya’ll overrun by folks with the same issue 😃
I’m not sure if it’s related to hoisting or not, but I found that lerna works way better when the package locks are disabled.
To disable them in all packages managed by lerna you can run:
lerna exec "echo package-lock=false >> .npmrc"Not everything seems to be working properly with npm@5.3.
lerna bootstrap --hoistdoes not report errors, but neither does it install all dependencies. If you go into a package and try tonpm ito remedy the issue npm does not appear to honor symlinks to other packages in your repo, though the symlinks are there. I end up with:Workaround to force npm 4.6 despite a global npm 5, at least when running
lernain the root of your monorepo:npm install --save-dev npm@4.6.1npmClienttonode_modules/.bin/npmin yourlerna.jsonLooks that way. The
package-lock.jsonfile is happily coexisting withlerna bootstrap --hoistusingnpm@5.3.Follow up: I just tried the above for JupyterLab here, and not all of the packages are ending up in the top level
node_modulesafter hoisting, meaning we still can’t usenpm@5.@rgbkrk, something like this should work (adapted from a JuypterLab script):
I was running into some trouble with that workflow last night but think I finally got things cleaned up and functioning more cleanly!
Thanks for your patience as I stumbled through this process.
I think this works now with
npm@~5.1.0?see https://github.com/npm/npm/pull/17508
Confirmed that
npm config set package-lock falseis enough to get us going for now, thanks @Tallyb!package-lock.json can be disabled using
npm config set package-lock falseYou probably also want to add innpm config set save false