Conflict in peer dependency while installing eslint-plugin-import (v2.30.0) with eslint v9.10.0.

Question

Conflict in peer dependency while installing eslint-plugin-import (v2.30.0) with eslint v9.10.0.

Munaf-Divan opened this issue 3 months ago · 6 comments

I am trying to use eslint-plugin-import v2.30.0 with Eslint v.9.10.0. Below is the log I got while installing the package and installation failed.

npm error code ERESOLVE
npm error ERESOLVE unable to resolve dependency tree
npm error
npm error While resolving: react-basic@0.0.0
npm error Found: eslint@9.10.0
npm error node_modules/eslint
npm error   dev eslint@"^9.10.0" from the root project
npm error
npm error Could not resolve dependency:
npm error peer eslint@"^2 || ^3 || ^4 || ^5 || ^6 || ^7.2.0 || ^8" from eslint-plugin-import@2.30.0
npm error node_modules/eslint-plugin-import
npm error   dev eslint-plugin-import@"*" from the root project
npm error
npm error Fix the upstream dependency conflict, or retry
npm error this command with --force or --legacy-peer-deps
npm error to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error

Here are the other major package versions I have used:

Package	Version
Node	20.17.0
React	18.3.1
Vite	5.4.1
TypeScript	5.5.3
ESLint	9.10.0

Answer 1 · 2024-09-17T11:41:46.000Z

This is probably intentional, as support for ESLint 9 is still being worked on.

See #2948 and #2996.

Answer 2 · 2024-09-17T11:58:54.000Z

Okay, thanks, so should we link this to that issue?

Answer 3 · 2024-09-17T15:28:22.000Z

The comment linked it.

When peer deps conflict, it's not a bug, it means the two things aren't compatible (in this case, yet).

Duplicate of #2948.

Answer 4 · 2024-09-19T20:30:16.000Z

hi @ljharb
the duplicated ticket is locked and no one understand what's going on at this point
is this plugin still maintained or not?
eslint v9 has been released 5 and half months ago and that leave support for eslint v8 is for only couple more weeks and the upgrade is blocked by this plugin
if help is needed please state with what exactly I'm willing to contribute to this plugin

Answer 5 · 2024-09-19T21:38:17.000Z

@robertIsaac of course the plugin is still maintained.

every eslint major takes at least 6 months for the entire ecosystem to support, and eslint 9 is much more disruptive a change, so it'll probably be over a year until that's the case. (however, I'm hopeful this plugin will ship eslint 9 support soon)

Are you aware you can just stay on eslint 8, whether it's supported or not?

Answer 6 · 2024-09-19T21:45:42.000Z

I'm aware, but if one of its dependency or the package itself become vulnerable they won't release a patch to fix it/support new version
Which means the whole company will be left vulnerable