chore: upgrade to [email protected]

[sameerank]

🎟️ Fixes issue
📜 Design Doc: link if applicable

Motivation and Context

To incorporate the changes from Eppo-exp/js-sdk-common#292

Description

How has this been documented?

How has this been tested?

[sameerank]

I'm recalling that we had decided in the past to avoid using loose semver notations (~ and ^) because we run the risk that if we release a change in common that is incompatible with one of the SDKs, that it might automatically get picked up and cause issues?

[aarsilv]

Yes good catch this is safer

[sameerank]

I was running into this error:

Run yarn --frozen-lockfile
yarn install v1.22.22
[1/5] Validating package.json...
[2/5] Resolving packages...
[3/5] Fetching packages...
error [email protected]: The engine "node" is incompatible with this module. Expected version "20 || >=22". Got "18.20.8"
error Found incompatible module.
info Visit https://yarnpkg.com/en/docs/cli/install for documentation about this command.

I.e. dependencies were resolving to a version of minimatch that is not compatible with node 18. I believe this will maintain compatibility with the old node version

[aarsilv]

Interesting. Thanks for addressing

[aarsilv]

Yes good catch this is safer

[aarsilv]

Interesting. Thanks for addressing

[aarsilv]

Lots of yarn changes were these dependabot upgrades or from running yarn with a different node version?

[sameerank]

Still lots of yarn.lock changes, even though my local environment is the following:

% node --version      
v18.20.8
% yarn --version
1.22.22

There have been a lot of changes to the underlying dependencies though. The latest common release includes quite a few deps-dev version bumps

https://github.com/Eppo-exp/js-sdk-common/releases/tag/v4.15.2

My hunch is that some of these bumps probably resolve to versions of minimatch and @types/node that are incompatible with node 18, hence the need to add the resolutions fields to the package.json to get yarn install to still work

[aarsilv]

Big regeneration of docs guessing the auto doc package updated?

[sameerank]

You can see that it jumped a few patch versions

node-server-sdk/yarn.lock

Lines 628 to 667 in b96a888

	"@microsoft/api-documenter@^7.23.9":
	version "7.26.31"
	resolved "https://registry.yarnpkg.com/@microsoft/api-documenter/-/api-documenter-7.26.31.tgz#7307fee2f4ebd348c45df4de32a2182031528a44"
	integrity sha512-eGp0nf/wTnuFTNf2WI998i0sjZNbFY2AiIC3BAy8BJOu3jYCYB8+zd/uE004eF4JE6bLNXAUqBXYcu5BD2aWCA==
	dependencies:
	"@microsoft/api-extractor-model" "7.30.7"
	"@microsoft/tsdoc" "~0.15.1"
	"@rushstack/node-core-library" "5.14.0"
	"@rushstack/terminal" "0.15.4"
	"@rushstack/ts-command-line" "5.0.2"
	js-yaml "~3.13.1"
	resolve "~1.22.1"
	"@microsoft/[email protected]":
	version "7.30.7"
	resolved "https://registry.yarnpkg.com/@microsoft/api-extractor-model/-/api-extractor-model-7.30.7.tgz#a87cd3332cd1016e47a6f4a1c4585024aa92bc7d"
	integrity sha512-TBbmSI2/BHpfR9YhQA7nH0nqVmGgJ0xH0Ex4D99/qBDAUpnhA2oikGmdXanbw9AWWY/ExBYIpkmY8dBHdla3YQ==
	dependencies:
	"@microsoft/tsdoc" "~0.15.1"
	"@microsoft/tsdoc-config" "~0.17.1"
	"@rushstack/node-core-library" "5.14.0"
	"@microsoft/api-extractor@^7.38.0":
	version "7.52.10"
	resolved "https://registry.yarnpkg.com/@microsoft/api-extractor/-/api-extractor-7.52.10.tgz#bbae187c209b537a39f08592577fa1dd50b22e15"
	integrity sha512-LhKytJM5ZJkbHQVfW/3o747rZUNs/MGg6j/wt/9qwwqEOfvUDTYXXxIBuMgrRXhJ528p41iyz4zjBVHZU74Odg==
	dependencies:
	"@microsoft/api-extractor-model" "7.30.7"
	"@microsoft/tsdoc" "~0.15.1"
	"@microsoft/tsdoc-config" "~0.17.1"
	"@rushstack/node-core-library" "5.14.0"
	"@rushstack/rig-package" "0.5.3"
	"@rushstack/terminal" "0.15.4"
	"@rushstack/ts-command-line" "5.0.2"
	lodash "~4.17.15"
	minimatch "10.0.3"
	resolve "~1.22.1"
	semver "~7.5.4"
	source-map "~0.6.1"
	typescript "5.8.2"

And the dependencies (like typescript and minimatch) eventually trace their way back to the dependabot bumped versions in the latest common release https://github.com/Eppo-exp/js-sdk-common/releases/tag/v4.15.2