Skip to content

Comments

Upgrade deps and modernize eslint usage#187

Merged
wesleyschlenker merged 6 commits intomainfrom
deps-and-eslint
Feb 24, 2026
Merged

Upgrade deps and modernize eslint usage#187
wesleyschlenker merged 6 commits intomainfrom
deps-and-eslint

Conversation

@markstos
Copy link
Collaborator

@markstos markstos commented Feb 21, 2026
edited by coderabbitai bot
Loading

  • deps: upgrade axios
  • chore: modernize eslint usage and resolving linting issues.

Summary by CodeRabbit

  • Chores

    • Updated axios to 1.13.5; modernized dev tooling by upgrading ESLint and adding new linting packages while removing legacy lint plugins and config.
    • Added a new shared ESLint configuration.

  • Refactor

    • Simplified upload status logic for clearer behavior.
    • Removed several obsolete lint directives and minor control-flow cleanups.

  • Tests

    • Simplified test handlers and tightened property existence checks for more robust tests.

@coderabbitai
Copy link
Contributor

coderabbitai bot commented Feb 21, 2026
edited
Loading

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 7d85921 and c6cd4d2.

⛔ Files ignored due to path filters (1)
  • yarn.lock is excluded by !**/yarn.lock, !**/*.lock
📒 Files selected for processing (1)
  • package.json
📝 Walkthrough

Walkthrough

Adds a new ESLint config, updates linting/dev dependencies and axios, removes several inline ESLint disables, and applies small control-flow and test cleanup changes across source and test files.

Changes

Cohort / File(s) Summary
ESLint config & manifest
eslint.config.mjs, package.json		 Adds eslint.config.mjs exporting an array including js.configs.recommended and merged globals.mocha + globals.node. Upgrades eslint to v10, adds @eslint/js and globals, removes legacy ESLint plugins and eslintConfig section.
Dependency bumps
package.json		 Bumps dependencies.axios to ^1.13.5; updates devDependencies.mocha to ^11.7.5.
Lint-directive removals
index.js, lib/httpClient.js, lib/rateLimiting.js		 Removes inline eslint-disable / eslint-disable-next-line comments — no behavioral changes.
Control-flow / error-handling tweaks
lib/authenticator.js, lib/uploads.js		 Replaces catch (_err) with bare catch {}; simplifies _uploadIsDone to return directly from switch cases (no API changes).
Tests — robustness & cleanup
test/athletes.js, test/pushSubscriptions.js		 Uses Object.prototype.hasOwnProperty.call(...) and removes unused parameters from nock reply callbacks.
Minor formatting/cleanups
index.js, lib/httpClient.js (also)		 Deletes linting comments / small formatting adjustments.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

  • v3.0.1 #172 — Similar edits to package.json (axios, eslint, mocha) and changes touching lib/httpClient.js.

"I’m a rabbit with a linting hat,
I hopped through code and fixed a spat.
I trimmed some comments, tidied a switch,
Updated tools and left a stitch.
🥕✨ — happy hops across the patch"

🚥 Pre-merge checks | ✅ 3
✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title accurately captures both primary objectives: upgrading dependencies (axios) and modernizing ESLint configuration, matching the main changes across package.json, eslint.config.mjs, and lint directive removals.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch deps-and-eslint

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

coderabbitai[bot]
coderabbitai bot reviewed Feb 21, 2026
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)
package.json (2)

53-62: ⚠️ Potential issue | 🟡 Minor

Remove the stale eslintConfig block — it's dead config.

The eslintrc config system has been completely removed in ESLint v10.0.0. That means "eslintConfig" in package.json is silently ignored by ESLint v10. Additionally, eslint-config-standard was removed from devDependencies in this PR, so the "extends": "standard" inside this block references an uninstalled package. Leaving it here will mislead anyone reading the configuration.

🗑️ Proposed fix — remove the dead section 
-  "eslintConfig": {
-    "extends": "standard",
-    "env": {
-      "mocha": true,
-      "node": true
-    },
-    "rules": {
-      "no-return-await": "off"
-    }
-  },
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@package.json` around lines 53 - 62, Remove the stale eslintConfig block from
package.json: delete the entire "eslintConfig" object (including "extends":
"standard", the "env" and "rules" entries) so the package.json no longer
contains dead ESLint configuration that is ignored by ESLint v10 and references
an uninstalled eslint-config-standard.

63-65: ⚠️ Potential issue | 🟠 Major

engines.node is incompatible with ESLint v10's Node.js requirement.

ESLint v10 requires Node.js (^20.19.0, ^22.13.0, or >=24) built with SSL support. The current engines field (>=20.0.0) permits Node 20.0.0–20.18.x, on which ESLint v10 will refuse to install, breaking npm test and npm run lint for those developers. The engines field should be tightened to match.

🔧 Proposed fix 
-    "node": ">=20.0.0"
+    "node": "^20.19.0 || ^22.13.0 || >=24"
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@package.json` around lines 63 - 65, Update the package.json "engines" node
semver to match ESLint v10's supported Node versions: replace the current
"engines": { "node": ">=20.0.0" } with a range that excludes Node
20.0.0–20.18.x, e.g. set the "node" value to ">=20.19.0 <21 || >=22.13.0 <23 ||
>=24.0.0" so ESLint v10 can install reliably; modify the "engines" -> "node"
string accordingly.
🧹 Nitpick comments (1)
eslint.config.mjs (1)

14-16: "no-return-await": "off" is redundant — the rule is deprecated.

The no-return-await rule was deprecated in ESLint v8.46.0 and there is no replacement rule. It is also not enabled by js.configs.recommended, so this "off" entry has no effect. It can be safely removed.

♻️ Suggested cleanup 
-        rules: {
-            "no-return-await": "off",
-        },
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@eslint.config.mjs` around lines 14 - 16, Remove the redundant
"no-return-await" property from the rules object in eslint.config.mjs (the rules
block that currently contains "no-return-await": "off"); simply delete that
key/value entry and adjust commas/formatting so the rules object remains valid
JSON/JS syntax.
🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@package.json`:
- Line 32: The package.json dependency for axios is pinned to an exact version
("axios": "1.13.5"); change it to a caret semver range (e.g. "axios": "^1.13.5")
so consumers can benefit from compatible minor/patch updates; update the
lockfile by running your package manager (npm install or yarn install)
afterwards to persist the change.

---

Outside diff comments:
In `@package.json`:
- Around line 53-62: Remove the stale eslintConfig block from package.json:
delete the entire "eslintConfig" object (including "extends": "standard", the
"env" and "rules" entries) so the package.json no longer contains dead ESLint
configuration that is ignored by ESLint v10 and references an uninstalled
eslint-config-standard.
- Around line 63-65: Update the package.json "engines" node semver to match
ESLint v10's supported Node versions: replace the current "engines": { "node":
">=20.0.0" } with a range that excludes Node 20.0.0–20.18.x, e.g. set the "node"
value to ">=20.19.0 <21 || >=22.13.0 <23 || >=24.0.0" so ESLint v10 can install
reliably; modify the "engines" -> "node" string accordingly.

---

Nitpick comments:
In `@eslint.config.mjs`:
- Around line 14-16: Remove the redundant "no-return-await" property from the
rules object in eslint.config.mjs (the rules block that currently contains
"no-return-await": "off"); simply delete that key/value entry and adjust
commas/formatting so the rules object remains valid JSON/JS syntax.

coderabbitai[bot]
coderabbitai bot reviewed Feb 23, 2026
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
package.json (1)

63-65: ⚠️ Potential issue | 🟡 Minor

engines.node is below ESLint 10's minimum Node.js requirement.

ESLint 10.0.1 requires Node.js (^20.19.0, ^22.13.0, or >=24), but the engines field currently allows >=20.0.0. Any contributor or CI runner on Node.js 20.0.0–20.18.x will satisfy this package's engine constraint but fail when npm attempts to install ESLint 10. Tightening the engines floor to >=20.19.0 prevents confusing install-time errors.

🔧 Suggested fix 
   "engines": {
-    "node": ">=20.0.0"
+    "node": ">=20.19.0"
   }
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@package.json` around lines 63 - 65, The engines.node constraint is too
permissive for ESLint 10; update the package.json "engines" -> "node" value from
">=20.0.0" to ">=20.19.0" so the declared Node.js minimum matches ESLint 10's
supported range (this change is in the package.json engines.node entry); ensure
any CI/tooling that reads this field will align with the new minimum.
🧹 Nitpick comments (2)
package.json (2)

40-40: eslint exact pin — consider using tilde (~) instead.

ESLint minor updates may report more linting errors than the previous release; the project itself therefore recommends using ~ in package.json (e.g., "eslint": "~3.1.0") to guarantee build results. All other devDependencies in this file use ^; the bare exact pin is inconsistent and prevents automatic uptake of patch-level bug fixes.

♻️ Suggested change 
-    "eslint": "10.0.1",
+    "eslint": "~10.0.1",
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@package.json` at line 40, Change the exact dependency pin "eslint": "10.0.1"
to a tilde range so patch fixes are picked up (e.g., "eslint": "~10.0.1");
update the "eslint" entry in package.json accordingly to match the project's
policy of using non-exact ranges like other devDependencies.

53-62: Remove the orphaned eslintConfig stanza.

With ESLint 10 and a flat config (eslint.config.mjs introduced in this PR), the old eslintConfig-in-package.json config system is no longer supported. The stanza also references eslint-config-standard (via "extends": "standard") which has been removed from devDependencies in this same PR — leaving it is misleading and potentially confusing to contributors.

♻️ Suggested removal 
-  "eslintConfig": {
-    "extends": "standard",
-    "env": {
-      "mocha": true,
-      "node": true
-    },
-    "rules": {
-      "no-return-await": "off"
-    }
-  },
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@package.json` around lines 53 - 62, Remove the orphaned eslintConfig stanza
from package.json (the entire block starting with "eslintConfig": { ... }) — it
references "extends": "standard" and legacy per-package ESLint config which is
no longer used with the new eslint.config.mjs flat config; delete that block so
package.json no longer contains eslintConfig, "extends": "standard", or the
associated "rules" entries.
🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@package.json`:
- Around line 63-65: The engines.node constraint is too permissive for ESLint
10; update the package.json "engines" -> "node" value from ">=20.0.0" to
">=20.19.0" so the declared Node.js minimum matches ESLint 10's supported range
(this change is in the package.json engines.node entry); ensure any CI/tooling
that reads this field will align with the new minimum.

---

Nitpick comments:
In `@package.json`:
- Line 40: Change the exact dependency pin "eslint": "10.0.1" to a tilde range
so patch fixes are picked up (e.g., "eslint": "~10.0.1"); update the "eslint"
entry in package.json accordingly to match the project's policy of using
non-exact ranges like other devDependencies.
- Around line 53-62: Remove the orphaned eslintConfig stanza from package.json
(the entire block starting with "eslintConfig": { ... }) — it references
"extends": "standard" and legacy per-package ESLint config which is no longer
used with the new eslint.config.mjs flat config; delete that block so
package.json no longer contains eslintConfig, "extends": "standard", or the
associated "rules" entries.
ℹ️ Review info

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between be8c269 and 3201928.

⛔ Files ignored due to path filters (1)
  • yarn.lock is excluded by !**/yarn.lock, !**/*.lock
📒 Files selected for processing (1)
  • package.json

coderabbitai[bot]
coderabbitai bot reviewed Feb 23, 2026
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

♻️ Duplicate comments (1)
package.json (1)

32-32: Previously flagged; now correctly resolved.

axios is now properly using a caret range ^1.13.5.

🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@package.json` at line 32, The package.json dependency for axios was
previously flagged but is now correctly set to a caret range; confirm that the
"axios" entry in package.json uses "^1.13.5" and no further change is needed—if
you see any other package.json entries or lockfile inconsistencies, run npm
install / yarn install to refresh the lockfile and ensure the caret range is
reflected consistently.
🧹 Nitpick comments (1)
package.json (1)

36-45: eslint devDependency looks good overall — minor version-pin inconsistency on Line 40.

@eslint/js (Line 36), globals (Line 41), and mocha (Line 42) all use a caret (^) range, while eslint itself on Line 40 is pinned to an exact version (10.0.1) with no range specifier. ESLint's own versioning policy notes that minor updates may report more linting errors, and recommends using a tilde (~) range specifier in package.json to guard against that while still allowing patch updates. Consider adding at least a tilde for consistency:

♻️ Proposed fix 
-    "eslint": "10.0.1",
+    "eslint": "~10.0.1",
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@package.json` around lines 36 - 45, The eslint devDependency is pinned to an
exact version ("eslint": "10.0.1") while sibling devDeps use ranges; update the
"eslint" entry in package.json to use a tilde range (e.g., change "10.0.1" to
"~10.0.1") so patch releases are allowed and behavior is consistent with other
deps; ensure you run npm install / yarn install afterwards to update lockfile.
🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@package.json`:
- Line 54: The engines.node field is overly constrained by the devDependency
(ESLint) requirement; update the "engines.node" entry in package.json to reflect
the library's actual runtime support (e.g., ">=15.0.0" to match availability of
require('timers/promises') used in lib/uploads.js, or ">=20.0.0" if you intend
to require Node 20+), removing the ESLint-driven exclusions (21.x, 23.x). Also
document the stricter developer/CI toolchain version in .nvmrc or Volta instead
of package.json so ESLint remains a dev-only constraint.

---

Duplicate comments:
In `@package.json`:
- Line 32: The package.json dependency for axios was previously flagged but is
now correctly set to a caret range; confirm that the "axios" entry in
package.json uses "^1.13.5" and no further change is needed—if you see any other
package.json entries or lockfile inconsistencies, run npm install / yarn install
to refresh the lockfile and ensure the caret range is reflected consistently.

---

Nitpick comments:
In `@package.json`:
- Around line 36-45: The eslint devDependency is pinned to an exact version
("eslint": "10.0.1") while sibling devDeps use ranges; update the "eslint" entry
in package.json to use a tilde range (e.g., change "10.0.1" to "~10.0.1") so
patch releases are allowed and behavior is consistent with other deps; ensure
you run npm install / yarn install afterwards to update lockfile.
ℹ️ Review info

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 3201928 and 7d85921.

📒 Files selected for processing (2)
  • eslint.config.mjs
  • package.json
🚧 Files skipped from review as they are similar to previous changes (1)
  • eslint.config.mjs

wesleyschlenker
wesleyschlenker approved these changes Feb 24, 2026
View reviewed changes
Copy link
Collaborator

@wesleyschlenker wesleyschlenker left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks ready to me

@wesleyschlenker wesleyschlenker merged commit 0db212b into main Feb 24, 2026
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@wesleyschlenker wesleyschlenker wesleyschlenker approved these changes

Assignees

@wesleyschlenker wesleyschlenker

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@markstos @wesleyschlenker