Skip to content

feat!: Node 22 + ESM#4059

Open
erickzhao wants to merge 51 commits intonextfrom
node-22
Open

feat!: Node 22 + ESM#4059
erickzhao wants to merge 51 commits intonextfrom
node-22

Conversation

@erickzhao
Copy link
Member

@erickzhao erickzhao commented Nov 26, 2025
edited
Loading

BREAKING CHANGE: this package now requires Node.js 22 and ESM. All @electron/ packages are bumped to their latest major versions.

Closes #3623
Closes #3684

  • Bump engines to Node 22
  • Update @types/node dependencies
  • Upgrade all @electron/ packages to their latest major versions
  • Use type: module in package.json
  • Drop support Rechoir/Interpret configurations
  • Replace ts-node with tsx
  • Remove dependencies on distutils and Python 3.11
  • Replace lodash with lodash-es
  • Upgrade to Vitest 4
  • Get fast tests to pass
  • Get slow tests to pass
  • Re-enable ESLint import plugin with correct ESM parsing
  • Check Forge configuration ESM/CJS compatibility

Split off PRs:

Future improvements:

  • Check if we still need jiti for the configuration loading
  • Check Webpack plugin ESM/CJS compatibility
  • Check Vite plugin ESM/CJS compatibility

@erickzhao erickzhao added the next label Nov 27, 2025
@erickzhao erickzhao changed the title chore: upgrade major versions to Node 22 chore: Node 22 + ESM Dec 2, 2025
@socket-security
Copy link

socket-security bot commented Dec 4, 2025
edited
Loading

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report

@erickzhao erickzhao mentioned this pull request Dec 4, 2025
Merged
@socket-security
Copy link

socket-security bot commented Jan 7, 2026
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Added@​types/​cross-zip@​4.0.2821005977100
Added@​tsconfig/​node22@​22.0.51001007087100
Added@​types/​lodash-es@​4.17.121001007780100
Updated@​types/​cross-spawn@​6.0.2 ⏵ 6.0.610010078 +1380100
Addedlodash-es@​4.17.211001007986100
Updated@​types/​node@​18.19.68 ⏵ 22.19.2100 +110081 +196100
Updated@​electron/​get@​3.0.0 ⏵ 4.0.299 +310010082100
Updated@​electron/​osx-sign@​1.3.1 ⏵ 2.3.0100 +210010083100
Updated@​electron/​rebuild@​3.7.0 ⏵ 4.0.199 +810010084100
Addedeslint-import-resolver-typescript@​4.4.49910010090100
Updated@​electron/​packager@​18.3.5 ⏵ 19.0.198 +110010091 +8100
Addedgot@​14.6.49910010092100
Added@​electron-forge/​template-base@​100.0.0100100100100100

View full report

@erickzhao erickzhao changed the title chore: Node 22 + ESM feat!: Node 22 + ESM Jan 16, 2026
@PascalPixel
Copy link

PascalPixel commented Jan 16, 2026

You're an absolute legend @erickzhao 🎸

@erickzhao erickzhao marked this pull request as ready for review January 16, 2026 22:58
@erickzhao erickzhao requested a review from a team as a code owner January 16, 2026 22:58
erikian
erikian reviewed Jan 17, 2026
View reviewed changes
packages/plugin/fuses/spec/fixture/src/main.cjs
@@ -1,3 +1,4 @@
// eslint-disable-next-line
Copy link
Member

@erikian erikian Jan 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: we could update .eslintrc.json at line 117 to include .js / .cjs files so that "n/no-unpublished-require": "off" also applies here:

-        "packages/*/*/spec/fixture/**/*.ts"
+        "packages/*/*/spec/fixture/**/*.{ts,js,cjs}"

packages/plugin/fuses/spec/fixture/package.json
"version": "1.0.0",
"main": "./src/main.js",
"main": "./src/main.cjs",
"type": "commonjs",
Copy link
Member

@erikian erikian Jan 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

aside: do we want to / should we update test fixtures to ESM at some point? That'd enable us to simplify the ESLint config a bit by removing all CJS-related rules.

yarn.lock
@@ -1412,7 +1405,7 @@ __metadata:
languageName: unknown
linkType: soft

"@electron/asar@npm:^3.2.1, @electron/asar@npm:^3.2.13, @electron/asar@npm:^3.3.1":
"@electron/asar@npm:^3.2.1":
Copy link
Member

@erikian erikian Jan 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

note: looks like electron-winstaller hasn't been updated to ESM, which is why we still depend on an older version of @electron/asar. Do we want to update electron-winstaller before landing this PR so all first-party Forge deps are ESM or is this something that can be addressed later (probably before Forge 8 stable)?

Copy link
Member Author

@erickzhao erickzhao Jan 19, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good point. I think we're not expecting any important breaking changes for electron-winstaller so I think it's not particular disruptive to keep it at the older version for now.

I think it'd be good to align all asar versions if possible before stable though!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@erikian erikian erikian left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

next

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@erickzhao @PascalPixel @erikian