Update Shakapacker to 10.2.0#771
Conversation
|
No actionable comments were generated in the recent review. 🎉 ℹ️ Recent review info⚙️ Run configurationConfiguration used: Organization UI Review profile: CHILL Plan: Pro Run ID: ⛔ Files ignored due to path filters (1)
📒 Files selected for processing (1)
🚧 Files skipped from review as they are similar to previous changes (1)
WalkthroughThis PR bumps shakapacker and Rspack-related dependency versions in Gemfile and package.json, and adds a notice-message assertion to a system spec for comment creation. ChangesDependency version bumps and test update
Estimated code review effort: 2 (Simple) | ~10 minutes Possibly related issues
🚥 Pre-merge checks | ✅ 5✅ Passed checks (5 passed)
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
🚀 Quick Review App CommandsWelcome! Here are the commands you can use in this PR:
|
Review: Update Shakapacker to 10.2.0Overall this is a clean, mechanical dependency bump ( Worth double-checking before merge (left an inline comment with detail):
Lower risk / FYI:
Security: No new/unfamiliar package sources — all resolved from the standard npmjs/rubygems registries with matching integrity hashes. Nothing that looks like a supply-chain concern. No functional code changes to review otherwise; this is safe to merge once CI (in particular the |
|
Reviewed this dependency-bump PR (Shakapacker 10.1.0 → 10.2.0 + lockfile refresh). Summary: Findings: none blocking. This is a clean, mechanical update:
No security, performance, or correctness concerns found. Nice that verification steps (bundle check, frozen yarn install, build:test, system spec run with node-renderer) are documented in the PR description. |
Review summaryOverall this is a low-risk, mechanical dependency-bump PR and looks solid. A few notes: Good:
Worth a second look (left as inline comments):
No security concerns identified; changes are limited to dependency manifests/lockfiles and one test assertion. |
Address-review summaryScan scope: full PR history for PR #771 on head Mattered
Skipped
Deferred-work tracking: none. Next default scan starts after this comment. Say |
ReviewThis PR bumps Shakapacker to 10.2.0 (Gemfile/Gemfile.lock + package.json/yarn.lock), pulls in the matching transitive updates ( Findings: none survived verification — this is a clean, low-risk dependency bump. Checks performed:
Nothing else in the diff (Gemfile.lock/yarn.lock churn) shows inconsistency or leftover stale version pins. |
Greptile SummaryThis PR updates the app to Shakapacker 10.2.0. The main changes are:
Confidence Score: 5/5This looks safe to merge after checking the CSS module config path.
package.json Important Files Changed
Reviews (1): Last reviewed commit: "Minimize Shakapacker lockfile refresh" | Re-trigger Greptile |
Review SummaryThis is a well-scoped, well-documented dependency bump PR. Reviewed for code quality, bugs, security, and performance. What it does:
Security: No concerning changes — Correctness/risk: Left one inline note — the rspack packages take a beta→stable jump plus a major version bump on the react-refresh plugin, but this app currently runs Overall: low risk, changes match their stated scope, and the included test fix is legitimate and verified against the actual app code. |
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 8573a1b44b
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
Review: Update Shakapacker to 10.2.0Overall this is a clean, well-scoped dependency bump. The lockfile diffs are minimal and match what's described in the PR body, the Issue foundStale version references in This PR bumps Minor observations (non-blocking)
|
✅ Review App DeletedReview app for PR #771 is deleted |
Summary
css-loaderon the Shakapacker 10.2-compatible v6 line (^6.8.1, resolved to 6.11.0) instead of taking the v7 major bump.Gemfile.locknow changes onlyshakapacker10.1.0 -> 10.2.0 and the required transitiverack-proxy0.8.2 -> 0.8.3; the unrelatedcrass/i18n/json/nokogiri/pp/rdoc/rbsdrift from the earlier PR head was removed in8573a1b44bc282f73b011bebea7cb726d821c08a.@rspack/cli/@rspack/core2.0.4 and@rspack/plugin-react-refresh2.0.0 satisfy Shakapacker 10.2.0's^2.0.0peer ranges.Dependency Notes
shakapackerunlocked, so the Ruby diff is scoped to Shakapacker plusrack-proxy.css-loaderstays on 6.11.0 to avoid the unrelated v7 CSS Modules semantic change while satisfying Shakapacker's^6.8.1 || ^7.0.0peer range.assets_bundler: webpack;bin/shakapacker-dev-servertherefore exercises the webpack HMR path. The Rspack React Refresh plugin was also smoke-tested directly with@rspack/core@2.0.4to confirm the 2.0 plugin exports a constructible plugin withapply().Verification
bin/conductor-exec bundle checkbin/conductor-exec yarn install --frozen-lockfilegit diff --checkgit diff --check origin/master...HEADbin/conductor-exec bundle exec rubocopbin/conductor-exec yarn test:clientbin/conductor-exec yarn build:test@rspack/core2.0.4 +@rspack/plugin-react-refresh2.0.0 constructsReactRefreshRspackPluginand exposesapply().NODE_ENV=test bin/conductor-exec node renderer/node-renderer.js, then ranRAILS_ENV=test NODE_ENV=test bin/conductor-exec bin/rspec spec/requests/server_render_check_spec.rb spec/system/destroy_comment_spec.rb(3 examples, 0 failures).RAILS_ENV=development NODE_ENV=development bin/conductor-exec bin/shakapacker-dev-serverloaded development config, served onlocalhost:3035, and compiled the client/HMR bundle successfully.AI disclosure: Prepared by OpenAI Codex from the prompt: "Post PRs to update react_on_rails and all major example, starter repos to shakapacker 10.2.0."
Summary by CodeRabbit