Skip to content

feat: upgrade and migrate outdated dependencies#187

Draft
scottschreckengaust wants to merge 19 commits intoaws-actions:mainfrom
scottschreckengaust:feature/eslint-flat-config
Draft

feat: upgrade and migrate outdated dependencies#187
scottschreckengaust wants to merge 19 commits intoaws-actions:mainfrom
scottschreckengaust:feature/eslint-flat-config

Conversation

@scottschreckengaust
Copy link
Copy Markdown
Contributor

@scottschreckengaust scottschreckengaust commented Apr 14, 2026
edited
Loading

Depends on: #186 (should merge first)

Description of changes

Migrate ESLint to v10 flat config and upgrade all remaining outdated dependencies.

What changed

  • Replaced .eslintrc.json with eslint.config.js (flat config format)
  • Migrated husky config from package.json to .husky/pre-commit (husky 9 format)
  • Applied prettier 3 formatting changes
  • Removed minimatch npm override — ESLint 10 uses minimatch@9.x natively
  • Updated lint scripts for flat config glob patterns

Dependencies upgraded

Package From To Reason
eslint ^8.43.0 ^10.2.0 Flat config, drops vulnerable minimatch
eslint-config-prettier ^6.10.1 ^10.1.8 Compatible with ESLint 10
@eslint/js ^10.0.1 Provides recommended rules for flat config
globals ^17.5.0 Provides environment globals for flat config
@actions/exec ^1.0.3 ^3.0.0 ESM-only, aligns with @actions/core v3
uuid ^9.0.0 ^13.0.0 Latest
yargs ^17.7.2 ^18.0.0 Latest
husky ^8.0.3 ^9.1.7 New config format
lint-staged ^13.2.1 ^16.4.0 Latest
prettier ^2.0.4 ^3.8.2 Latest

Verification

  • All 23 tests passing
  • npm run lint clean
  • npm run build succeeds
  • npm audit — 0 vulnerabilities
  • npm outdated — 0 outdated

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

Check any applicable:

  • Were any files moved? Moving files changes their URL, which breaks all hyperlinks to the files.

scottschreckengaust and others added 15 commits April 13, 2026 13:38
@scottschreckengaust
fix: update Node.js version to 24.x in workflow
f05af87
@scottschreckengaust
fix: update GitHub Actions to use Node.js 24 and latest actions
fa83867
@scottschreckengaust
fix: Bump version from 1.0.4 to 1.0.20 (next release)
7a9895b
@scottschreckengaust
fix: update version of @aws-actions/codebuild-run-build
c12a765
@scottschreckengaust
fix: downgrade @actions/github to ^8.0.1 for CJS compatibility
9b70486 
@actions/github v9+ is ESM-only and incompatible with this project's
CommonJS require() usage. v8.0.1 is the latest CJS-compatible release
with the same API surface.
@scottschreckengaust
fix: upgrade mocha from ^10.1.0 to ^11.7.5
d76431b
@scottschreckengaust
fix: resolve npm audit findings via overrides and dependency updates
7c0ebe6 
Add npm overrides for transitive dependencies pinned by mocha and
eslint to versions outside their semver ranges. Run npm audit fix
for remaining direct dependency updates.

Result: 0 vulnerabilities, all 23 tests passing.
@scottschreckengaust
docs: add ESM migration plan
274cf2f
@scottschreckengaust
feat: convert project from CommonJS to ESM
e30c84e 
- Add "type": "module" to package.json
- Convert all require()/module.exports to import/export
- Upgrade @actions/core ^1.10.0 -> ^3.0.0 (ESM-only)
- Upgrade @actions/github ^8.0.1 -> ^9.1.0 (ESM-only)
- Upgrade uuid ^3.4.0 -> ^9.0.0 (ESM import path)
- Upgrade yargs ^15.3.1 -> ^17.7.2 (ESM support)
- Upgrade @vercel/ncc ^0.36.1 -> ^0.38.4 (ESM input)
- Upgrade chai ^4.2.0 -> ^6.2.2 (ESM-native)
- Update ESLint config for ESM (sourceType: module)
- Rework test context mutation for ESM live bindings

All 23 tests passing, 0 audit vulnerabilities, ncc build succeeds.
@scottschreckengaust
fix: replace ncc with esbuild for single-file ESM bundle
968446d 
ncc v0.38 code-splits ESM output into chunks, which is unreliable
for GitHub Actions runners. esbuild produces a single dist/index.js
with a createRequire banner shim for CJS interop.
@scottschreckengaust
refactor: inject context into githubInputs() for testability
eeb154c 
Accept an optional context parameter (defaults to github.context)
so tests can pass plain objects instead of mutating the shared
@actions/github singleton.
@scottschreckengaust
ci: test against Node.js 22 and 24 matrix
1f62c38
@scottschreckengaust
chore: remove ESM migration plan
ac22d61
@scottschreckengaust
feat: migrate ESLint to v10 flat config
8f3be0c 
- Replace .eslintrc.json with eslint.config.js (flat config)
- Upgrade eslint ^8.43.0 -> ^10.2.0
- Upgrade eslint-config-prettier ^6.10.1 -> ^10.1.8
- Add @eslint/js and globals as dev dependencies
- Remove minimatch override (eslint 10 uses minimatch 9.x natively)
- Update lint scripts for flat config glob patterns

All 23 tests passing, 0 audit vulnerabilities.
@scottschreckengaust
chore: upgrade all outdated dependencies
31f2e91 
Prod deps:
- @actions/exec ^1.0.3 -> ^3.0.0
- uuid ^9.0.0 -> ^13.0.0
- yargs ^17.7.2 -> ^18.0.0

Dev deps:
- husky ^8.0.3 -> ^9.1.7 (migrated config to .husky/pre-commit)
- lint-staged ^13.2.1 -> ^16.4.0
- prettier ^2.0.4 -> ^3.8.2 (reformatted source files)

All 23 tests passing, 0 audit vulnerabilities, 0 outdated.
@scottschreckengaust scottschreckengaust changed the title feat: migrate ESLint to v10 flat config feat: upgrade and migrate outdated dependencies Apr 14, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@scottschreckengaust