Yarn: Yarn will not upgrade ember-source package from 3.1.0 to 3.1.1
Do you want to request a feature or report a bug?
Bug
What is the current behavior?
Changing version of ember-source from 3.1.0 to 3.1.1 in package.json deps and running yarn install updates lock file to 3.1.1, but actual package in node_modules remains 3.1.0
If the current behavior is a bug, please provide the steps to reproduce.
- create a new yarn project w/
yarn init - create
package.jsonw/"ember-source": "3.1.0"under deps - run
yarn install cat node_modules/ember-source/package.json- version remains
3.1.0(expected) - manually change
ember-sourceto3.1.1inpackage.json yarn install- Output from
install(notice, lock file updated, but not packages were installed/upgraded)
yarn install v1.6.0
[1/4] ๐ Resolving packages...
[2/4] ๐ Fetching packages...
[3/4] ๐ Linking dependencies...
[4/4] ๐ Building fresh packages...
success Saved lockfile.
โจ Done in 0.55s.
โ derp rg ember-source yarn.lock
119:[email protected]:
121: resolved "https://registry.yarnpkg.com/ember-source/-/ember-source-3.1.1.tgz#9cf95e8a6d7568d60b8eda2aeda17ac8944e654b"
- Search
yarn.lockforember-source, version is correctly recorded as3.1.1 cat node_modules/ember-source/package.json- Actual module version remains
3.1.0๐ ๐
What is the expected behavior?
ember-source is now 3.1.1
Please mention your node.js, yarn and operating system version.
$ node --version
v9.11.1
$ yarn --version
1.5.1
OSX 10.13.4
Note: Only workaround we could find was to nuke node_modules and reinstall deps
RavenHursT
All 13 comments
Wow, how did this break? ๐ confirmed on 1.6.0.
Only workaround we could find was to nuke node_modules and reinstall deps
you could also do yarn install --force and it will force re-copy all the files. I'll dig in and see if I can figure out what's going on...
rally25rs
on 25 Apr 2018
Debugging notes:
The file size and mtime are exactly the same between versions 3.1.0 and 3.1.1
~/Projects/yarn-test ๐ stat -f "%z %m" -t "%s" /Users/jvalore/Library/Caches/Yarn/v1/npm-ember-source-3.1.0-21902747801c747b615f60168712968db3b433fc/package.json
4603 499162500
~/Projects/yarn-test ๐ stat -f "%z %m" -t "%s" /Users/jvalore/Library/Caches/Yarn/v1/npm-ember-source-3.1.1-9cf95e8a6d7568d60b8eda2aeda17ac8944e654b/package.json
4603 499162500
The size isn't surprising, but the modified time is.
yarn looks at those 2 values to compare a file in the cache to a file already in node_modules to see if it needs to be recopied. In the verbose log we see:
verbose 0.689 Skipping copying of file "/Users/jvalore/Library/Caches/Yarn/v1/npm-ember-source-3.1.1-9cf95e8a6d7568d60b8eda2aeda17ac8944e654b/package.json" as the file at "/Users/jvalore/Projects/yarn-test/node_modules/ember-source/package.json" is the same size (4603) and mtime (499162500000).
so it is leaving the previous (3.1.0) file in place.
I think this problem is isolated to these specific versions due to them being last modified in the same second. I checked other version's package.json modified times:
3.0.0 = 1518583481
3.1.0 = 499162500
3.1.0-beta.1 = 1518621324
3.1.0-beta.2 = 1519085839
3.1.1 = 499162500
Also those duplicate timestamps are on 10/26/1985 which is clearly not the correct timestamp. I know there were a couple npm bugs that were corrupting timestamps, but not sure if this is related.
Removing the [high-priority] tag since this seems isolated to changing between just these 2 versions that seem to have incorrect timsestamps.
rally25rs
on 25 Apr 2018
Seeing another package not honoring the yarn.lock version as well now:
Missing yarn packages:
Package: c3
* Specified: 0.5.4
* Installed: 0.5.3
Run `yarn` to install missing dependencies.
Looks like the same issue...
RavenHursT
on 26 Apr 2018
Same with colors. Always installs 1.2.3, even though the version is 1.2.4 in package.json and yarn.lock.
[email protected]
[email protected]
le0nik
on 11 May 2018
Just ran into another: esm package is marked as 3.0.33 but installs 3.0.26
This really does seem to be a rather problematic bug... We're running into it w/ different packages almost everyday...
Should we open a cross-referenced bug ticket over at https://github.com/npm/npm/issues to see if that team can help?
RavenHursT
on 14 May 2018
Nm.. just did โ๏ธ
RavenHursT
on 14 May 2018
FYI... just tried this again w/ [email protected] and got the same result: https://github.com/npm/npm/issues/20615#issuecomment-389325441
RavenHursT
on 15 May 2018
Just FYI, the timestamps being in 1985 is intentional: https://github.com/npm/npm/issues/20615#issuecomment-393618841
legodude17
on 31 May 2018
That thread is now locked. Anyone here in Yarn world have any ideas?
RavenHursT
on 4 Jun 2018
I am running into this issue, also. yarn install --force does not help because it does not cause all files in yarn's cache to be copied to the local node_modules directory. @RavenHursT 's workaround, deleting the node_modules directory, does work for me, but that's not ideal.
Does the yarn team have a plan to cope with the npm team's decision to set a common timestamp for all files in all published packages?
amarsan
on 8 Jun 2018
We just started running into this in our project as well. Some files for some packages now show the weird 1985 timestamp and for these packages, yarn does not correctly install/update files on disk. We also now have to resort to blowing away node_modules for each build, but this is massively inefficient. I'd also like to see yarn fix this quickly.
kaiyoma
on 18 Jun 2018
Man.. almost 2 months, and still nothing? You'd think this would be a higher priority due to the possibility of packages not receiving security updates and such....
RavenHursT
on 19 Jun 2018
I seem to have just gotten something similar for Ember Data:
Missing yarn packages:
Package: ember-data
* Specified: ^3.3.0
* Installed: 3.2.0
lougreenwood
on 17 Jul 2018
Related issues
NonPolynomial
ยท
3Comments
MunifTanjim
ยท
3Comments
jviotti
ยท
3Comments
seansfkelley
ยท
3Comments
chiedo
ยท
3Comments
Most helpful comment
I seem to have just gotten something similar for Ember Data: