mirror of
https://github.com/getcompanion-ai/co-mono.git
synced 2026-04-15 18:01:22 +00:00
fix(coding-agent): check npm package version before using cached copy
For temporary npm extensions (-e npm:...): - Unpinned packages: fetch latest version from registry and reinstall if newer - Pinned packages: reinstall if cached version doesn't match
This commit is contained in:
Mario Zechner
parent
0d24ddbb03
commit
7b920f27d2
1 changed files with 46 additions and 1 deletions
|
|
@ -452,7 +452,8 @@ export class DefaultPackageManager implements PackageManager {
|
|||
|
||||
if (parsed.type === "npm") {
|
||||
const installedPath = this.getNpmInstallPath(parsed, scope);
|
||||
if (!existsSync(installedPath)) {
|
||||
const needsInstall = !existsSync(installedPath) || (await this.npmNeedsUpdate(parsed, installedPath));
|
||||
if (needsInstall) {
|
||||
const installed = await installMissing();
|
||||
if (!installed) continue;
|
||||
}
|
||||
|
|
@ -542,6 +543,50 @@ export class DefaultPackageManager implements PackageManager {
|
|||
return { type: "local", path: source };
|
||||
}
|
||||
|
||||
/**
|
||||
* Check if an npm package needs to be updated.
|
||||
* - For unpinned packages: check if registry has a newer version
|
||||
* - For pinned packages: check if installed version matches the pinned version
|
||||
*/
|
||||
private async npmNeedsUpdate(source: NpmSource, installedPath: string): Promise<boolean> {
|
||||
const installedVersion = this.getInstalledNpmVersion(installedPath);
|
||||
if (!installedVersion) return true;
|
||||
|
||||
const { version: pinnedVersion } = this.parseNpmSpec(source.spec);
|
||||
if (pinnedVersion) {
|
||||
// Pinned: check if installed matches pinned (exact match for now)
|
||||
return installedVersion !== pinnedVersion;
|
||||
}
|
||||
|
||||
// Unpinned: check registry for latest version
|
||||
try {
|
||||
const latestVersion = await this.getLatestNpmVersion(source.name);
|
||||
return latestVersion !== installedVersion;
|
||||
} catch {
|
||||
// If we can't check registry, assume it's fine
|
||||
return false;
|
||||
}
|
||||
}
|
||||
|
||||
private getInstalledNpmVersion(installedPath: string): string | undefined {
|
||||
const packageJsonPath = join(installedPath, "package.json");
|
||||
if (!existsSync(packageJsonPath)) return undefined;
|
||||
try {
|
||||
const content = readFileSync(packageJsonPath, "utf-8");
|
||||
const pkg = JSON.parse(content) as { version?: string };
|
||||
return pkg.version;
|
||||
} catch {
|
||||
return undefined;
|
||||
}
|
||||
}
|
||||
|
||||
private async getLatestNpmVersion(packageName: string): Promise<string> {
|
||||
const response = await fetch(`https://registry.npmjs.org/${packageName}/latest`);
|
||||
if (!response.ok) throw new Error(`Failed to fetch npm registry: ${response.status}`);
|
||||
const data = (await response.json()) as { version: string };
|
||||
return data.version;
|
||||
}
|
||||
|
||||
/**
|
||||
* Get a unique identity for a package, ignoring version/ref.
|
||||
* Used to detect when the same package is in both global and project settings.
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue