codeant-ai-for-open-source[bot] commented on PR #37450:
URL: https://github.com/apache/superset/pull/37450#issuecomment-3800847096
## **Sequence Diagram**
This PR pins query-string and global-box in package.json to force compatible
CommonJS versions and reintroduce a missing transitive dependency, preventing
CI failures caused by npm lockfile regenerations during dependency updates.
```mermaid
sequenceDiagram
participant Dependabot
participant npm
participant CI
participant Repo
Dependabot->>npm: Run dependency update (regenerate lockfile)
npm-->>Repo: Resolve deps (query-string -> 9.x (ESM), global-box dropped)
Repo->>CI: Run tests (Jest/Storybook)
CI-->>Dependabot: Fail (SyntaxError / Module not found)
Repo->>Repo: Add pinned deps ([email protected], [email protected]) in
package.json
Repo->>npm: Install & regenerate lockfile
npm-->>CI: Resolved compatible deps
CI-->>Dependabot: Tests pass (Dependabot PRs can be rebased)
```
---
*Generated by [CodeAnt AI](https://codeant.ai)*
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
