Dependencies are not up to date

[bl4ckb0ne]

$ yarn 
yarn install v1.22.10
info No lockfile found.
[1/5] Validating package.json...
[2/5] Resolving packages...
warning @commitlint/cli > babel-polyfill > [email protected]: core-js@<3 is no longer maintained and not recommended for usage due to the number of issues. Please, upgrade your dependencies to the actual version of core-js@3.
warning @commitlint/cli > babel-polyfill > babel-runtime > [email protected]: core-js@<3 is no longer maintained and not recommended for usage due to the number of issues. Please, upgrade your dependencies to the actual version of core-js@3.
warning @types/jest > @types/[email protected]: This is a stub types definition. jest-diff provides its own type definitions, so you do not need this installed.
warning @types/[email protected]: This is a stub types definition for reflect-metadata (https://github.com/rbuckton/ReflectDecorators). reflect-metadata provides its own type definitions, so you don't need @types/reflect-metadata installed!
warning jest > jest-cli > @jest/core > jest-haste-map > [email protected]: fsevents 1 will break on node v14+ and could be using insecure binaries. Upgrade to fsevents 2.
warning jest > jest-cli > @jest/core > micromatch > snapdragon > source-map-resolve > [email protected]: https://github.com/lydell/resolve-url#deprecated
warning jest > jest-cli > @jest/core > micromatch > snapdragon > source-map-resolve > [email protected]: Please see https://github.com/lydell/urix#deprecated
warning jest > jest-cli > jest-config > jest-environment-jsdom > jsdom > [email protected]: use String.prototype.padStart()
warning jest > jest-cli > jest-config > jest-environment-jsdom > jsdom > [email protected]: request has been deprecated, see https://github.com/request/request/issues/3142
warning jest > jest-cli > jest-config > jest-environment-jsdom > jsdom > [email protected]: request-promise-native has been deprecated because it extends the now deprecated request package, see https://github.com/request/request/issues/3142
warning jest > jest-cli > jest-config > jest-environment-jsdom > jsdom > request > [email protected]: this library is no longer supported
warning [email protected]: TSLint has been deprecated in favor of ESLint. Please see https://github.com/palantir/tslint/issues/4534 for more information.
warning typestrict > [email protected]: Package no longer supported. Consider using eslint-plugin-sonarjs.
[3/5] Fetching packages...
info [email protected]: The platform "linux" is incompatible with this module.
info "[email protected]" is an optional dependency and failed compatibility check. Excluding it from installation.
[4/5] Linking dependencies...
warning "typestrict > [email protected]" has incorrect peer dependency "tslint@^5.1.0".
warning "typestrict > [email protected]" has incorrect peer dependency "tslint@^5.11.0".
[5/5] Building fresh packages...
success Saved lockfile.
Done in 35.64s.

[laurence-myers]

1. These are all transitive dependencies, i.e. dependencies of dependencies (of dependencies). Not much we can do to resolve them. jest is the biggest culprit.
2. We should replace tslint with eslint, which avoids the typestrict dependency issues.
3. All of these dependencies are dev dependencies, so only impact ongoing maintenance, and not consumers of joiful. The only runtime dependencies of joiful are joi and Node.js itself.

[kf6kjg]

It's been a few years, and now the scope of dependencies has doubled: reflect-metadata exists as a required peer dependency. Since the version specifier is 0.1.13 only that exact version will match. This is causing me some headaches, and I'm working around it with npm overrides.