feat(tools-packages): Add package validation helpers to tools-packages#4110
feat(tools-packages): Add package validation helpers to tools-packages#4110
Conversation
…ackage.json files
…tions that allow working in yarn constraints and directly against files
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| The same validation code can run inside a Yarn constraints file by adapting | ||
| the workspace object Yarn provides: |
There was a problem hiding this comment.
I'm not seeing the benefits of this when Yarn already solves the exact same problem that we've already implemented in rnx-kit.
Lines 16 to 43 in 18bf2c4
I think it would make more sense if the intention is to bring Yarn Constraints to other package managers or into other workloads, and that the syntax is basically the same.
There was a problem hiding this comment.
There are two questions here. The usefulness and the API. In terms of usefulness, yarn constraints are limited in applicability. There are a number of places where you want to run package validation logic, one of which is yarn constraints. This pattern allows you to author that code once and then have it be usable in multiple contexts. Align-deps is an example. A follow up PR here would be to have align-deps use this structure for package.json modifications, thus allowing it to be run via API in constraints if desired. Another point of the usefulness is that the yarn constraints model only works for package.json files. In FURN I use this same pattern for tsconfig.json validation as well.
The other question is API surface. The set/unset/error pattern is pretty clean, but I'm less a fan of using set as it is an extremely generic name and has different semantics than what actually happens. I chose the undefined to delete mainly because it allows better generic patterns (like loop handling) rather than having to branch the logic between deletes and adds.
There was a problem hiding this comment.
That makes sense to me. It does sound like we want a new JSON validation package though. I don't think it fits in tools-package if it's supposed to be able to handle any .json file, not just package.json, which is the main purpose of this package.
| * @param friendlyName name used to create a symbol key for the object | ||
| * @returns a set of accessors for the symbol key | ||
| */ | ||
| export function createObjectValueAccessors<TObj extends object, TVal>( |
There was a problem hiding this comment.
Can we use Record<symbol, T> instead of object here to avoid casting? I've managed to reduce it to 1 casting with this:
friendlyName: string,
initialize: (pkgInfo: PackageInfo) => T
): GetPackageValue<T> {
+ return createValueLoader<T, PackageInfo<T>>(friendlyName, initialize);
+}
+
+/**
+ * Helper function to create a typed accessor function for getting and storing information
+ * in any object. This can be whatever you want, the key is only created and stored in
+ * the generated function so there are no collisions.
+ *
+ * @param friendlyName name used to create a symbol key for the package info
+ * @param initialize function used to initialize the value stored in the key
+ * @returns a function to retrieve the value from the object, if unset the initialize function is called
+ */
+export function createValueLoader<T, TObj extends Record<symbol, T>>(
+ friendlyName: string,
+ initialize: (obj: TObj) => T
+): (obj: TObj) => T {
const symbolKey = Symbol(friendlyName);
- return (pkgInfo: PackageInfo) => {
- if (!(symbolKey in pkgInfo)) {
- pkgInfo[symbolKey] = initialize(pkgInfo);
+ return (obj: TObj) => {
+ if (!Object.hasOwn(obj, symbolKey)) {
+ (obj as Record<symbol, T>)[symbolKey] = initialize(obj);
}
- return pkgInfo[symbolKey] as T;
+ return obj[symbolKey];
};
}And the following changes in types.ts:
diff --git a/packages/tools-packages/src/types.ts b/packages/tools-packages/src/types.ts
index cbcdb16cf..eb67240fd 100644
--- a/packages/tools-packages/src/types.ts
+++ b/packages/tools-packages/src/types.ts
@@ -1,6 +1,6 @@
import type { PackageManifest } from "@rnx-kit/types-node";
-export type PackageInfo = {
+export type PackageInfo<T = unknown> = {
/** name of the package */
name: string;
@@ -18,13 +18,13 @@ export type PackageInfo = {
* other packages to leverage any caching happening for PackageInfo entries to store additional
* information and ensure it is only loaded once.
*/
- [key: symbol]: unknown;
+ [key: symbol]: T;
};
/**
* Typed accessors for retrieving values from the package info
*/
-export type GetPackageValue<T> = (pkgInfo: PackageInfo) => T;
+export type GetPackageValue<T> = (pkgInfo: PackageInfo<T>) => T;
/**
* Set of accessor functions that can be retrieved for a specific symbolThe final cast can't be removed because of TS2862 Type 'T' is generic and can only be indexed for reading. Which I guess is a limitation in TypeScript itself.
| export type JSONPrimitive = string | number | boolean | null; | ||
| /** JSON value type */ | ||
| export type JSONValue = JSONPrimitive | Record<string, unknown> | JSONValue[]; |
There was a problem hiding this comment.
We don't have to use unknown here. This is what we use in RNTA:
export type JSONValue =
| string
| number
| boolean
| JSONArray
| JSONObject
| null;
export type JSONArray = JSONValue[];
export type JSONObject = { [key: string | symbol]: JSONValue };Note that we don't use Record because TypeScript doesn't like circular references.
There was a problem hiding this comment.
This (along with the validation code) doesn't fit in tools-package. Consider moving to a separate package (not necessarily with a tools- prefix).
| fix: fix ?? defaultOptions.fix ?? false, | ||
| reportError: reportError ?? defaultOptions.reportError ?? console.error, | ||
| reportPrefix: reportPrefix ?? defaultOptions.reportPrefix, | ||
| jsonFilePath: jsonFilePath, |
There was a problem hiding this comment.
| jsonFilePath: jsonFilePath, | |
| jsonFilePath, |
| throw new Error( | ||
| `Blocked JSON path segment: ${segment} in "${segments.join(".")}"` | ||
| ); |
There was a problem hiding this comment.
Can this be configured to delete/ignore instead of throwing similar to Node's --disable-proto?
| const defaultOptions: Omit<JSONValidatorOptions, "jsonFilePath"> = { | ||
| fix: false, | ||
| }; |
There was a problem hiding this comment.
It looks like we already handle fix being unset so we can make this smaller:
| const defaultOptions: Omit<JSONValidatorOptions, "jsonFilePath"> = { | |
| fix: false, | |
| }; | |
| const defaultOptions: Omit<JSONValidatorOptions, "jsonFilePath"> = {}; |
3 participants
Description
I started this code while doing some package linting work in the FURN repository where I wanted to shift some of the work to yarn constraints. It had what I thought was a fairly good pattern for enforcing rules on package.json files and realized this could be useful as general helpers for authoring rules against package.json files (and other JSON files).
This has a few main parts.
PackageContextThis is a raw bundle of readonly manifest, name, and root path. It is essentially the core of the PackageInfo type but the creation functions for it are uncached, whereas PackageInfo are cached and contain information about whether or not the package is a workspace.
JSONValidatorThis can be created in fix mode or in check mode. By use of the
enforceroutine the manifest will be updated (if in fix) or emit errors (if in check). When the finish routine is called the manifest will be written out if there are changes. This can be created against any JSON file and is not package.json specific.PackageValidationContextThis a a validating context which can be created against a folder/manifest in the repo, or from a
Yarn.Constraints.Workspaceallowing validation rules to be written such that they can run inyarn constraintscalls or in other contexts. The dependency on@yarnpkg/typeswhere this type comes from is an optional peer dependency as it only needs to be filled in when you are using constraints where you should already be typing your constraints via that package.Test plan
Added automated tests for the new functionality.