Skip to content

fix(core): project graph creation processes project dependencies correctly #32784

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Sep 26, 2025
Merged

fix(core): project graph creation processes project dependencies correctly #32784

merged 5 commits into from
Sep 26, 2025

Conversation

@Coly010
Copy link
Contributor

@Coly010 Coly010 commented Sep 19, 2025
edited
Loading

Current Behavior

The project graph build process incorrectly handles dependencies when workspace projects have
different versions or are referenced via specific version ranges. This causes several issues:

  1. NPM lockfile parser crashes when encountering symlinked nested dependencies in workspaces
    (which don't have versions)
  2. Package.json dependencies that reference workspace projects with specific versions (e.g.,
    "proj4": "1.0.0" when workspace has "version": "2.0.0") incorrectly resolve to the workspace
    project instead of the installed npm package
  3. Version ranges and file references to workspace projects are not properly validated

Expected Behavior

The dependency resolution should:

  • Handle symlinked workspace packages in npm lockfiles without crashing
  • Correctly differentiate between workspace projects and npm packages when specific versions are
    referenced
  • Properly validate version ranges against workspace package versions using semver
  • Support file references (e.g., "file:../proj6") for workspace dependencies
  • Only resolve to workspace projects when the version constraint is satisfied or when using
    wildcards

Notes

This has inadvertently caused issues when calculating which manifest files need to be updated in the JSVersionActions / Nx Release for Npm Packages

Related Issues

Fixes #31454

@Coly010 Coly010 self-assigned this Sep 19, 2025
@vercel
Copy link

vercel bot commented Sep 19, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Preview Updated (UTC)
nx-dev Ready Ready Preview Sep 26, 2025 10:52am

@nx-cloud
Copy link
Contributor

nx-cloud bot commented Sep 19, 2025
edited
Loading

View your CI Pipeline Execution ↗ for commit fcda2f9

Command Status Duration Result
nx affected --targets=lint,test,test-kt,build,e... ✅ Succeeded 5m 10s View ↗
nx run-many -t check-imports check-commit check... ✅ Succeeded 2m 28s View ↗
nx-cloud record -- nx-cloud conformance:check ✅ Succeeded 3s View ↗
nx-cloud record -- nx format:check ✅ Succeeded 3s View ↗
nx-cloud record -- nx sync:check ✅ Succeeded <1s View ↗
nx documentation ✅ Succeeded 13s View ↗

☁️ Nx Cloud last updated this comment at 2025-09-26 18:10:56 UTC

@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch 2 times, most recently from 23aa649 to 6600da2 Compare September 19, 2025 10:55
nx-cloud[bot]

This comment was marked as outdated.

Sign in to view

@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from 213c25d to ed6b4ad Compare September 22, 2025 19:01
@Coly010 Coly010 changed the title fix(core): process project dependencies correctly fix(core): project graph creation processes project dependencies correctly Sep 22, 2025
@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from ed6b4ad to bac9805 Compare September 22, 2025 20:15
@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from bac9805 to 76472dc Compare September 23, 2025 19:36
@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from 76472dc to 7174af3 Compare September 24, 2025 09:02
nx-cloud[bot]

This comment was marked as outdated.

Sign in to view

nx-cloud[bot]

This comment was marked as outdated.

Sign in to view

@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from 9fa7e70 to 9e9f6f8 Compare September 24, 2025 10:51
nx-cloud[bot]

This comment was marked as outdated.

Sign in to view

@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from 9e9f6f8 to fb4ea48 Compare September 24, 2025 11:35
nx-cloud[bot]

This comment was marked as outdated.

Sign in to view

@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from f508051 to 2ea6bab Compare September 24, 2025 17:25
nx-cloud[bot]

This comment was marked as outdated.

Sign in to view

nx-cloud[bot]

This comment was marked as resolved.

Sign in to view

@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from 11617ee to dc6f6c7 Compare September 25, 2025 12:46
@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from dc6f6c7 to 9c4b611 Compare September 25, 2025 15:40
@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from 9c4b611 to 3d95a70 Compare September 25, 2025 16:01
@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from 3d95a70 to 8f283fe Compare September 26, 2025 08:00
@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from 8f283fe to 6ef92aa Compare September 26, 2025 10:13
@Coly010 Coly010 force-pushed the core/process-project-dependencies-correctly branch from 6ef92aa to fcda2f9 Compare September 26, 2025 10:40
@Coly010 Coly010 marked this pull request as ready for review September 26, 2025 10:55
@Coly010 Coly010 requested review from a team, FrozenPandaz and meeroslav as code owners September 26, 2025 10:55
@FrozenPandaz FrozenPandaz merged commit ad032ad into master Sep 26, 2025
15 checks passed
@FrozenPandaz FrozenPandaz deleted the core/process-project-dependencies-correctly branch September 26, 2025 18:13
@github-actions
Copy link
Contributor

github-actions bot commented Oct 2, 2025

This pull request has already been merged/closed. If you experience issues related to these changes, please open a new issue referencing this pull request.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Oct 2, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@nx-cloud nx-cloud[bot] nx-cloud[bot] left review comments

@FrozenPandaz FrozenPandaz FrozenPandaz approved these changes

@meeroslav meeroslav Awaiting requested review from meeroslav meeroslav is a code owner

+1 more reviewer

@comp615 comp615 comp615 left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@Coly010 Coly010

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

New Versioning protocol incorrectly bumps downstream pinned versions

4 participants

@Coly010 @comp615 @FrozenPandaz