The changes noted within this vNEXT section have not been released yet. New PRs and commits which introduce changes should include an entry in this vNEXT section as part of their development. When a release is being prepared, a new header will be (manually) created below and the appropriate changes within that release will be moved into the new section.
Narrow graphql peer dependency to a more fitting range ^15.4.0 based on our current usage of the package. This requirement was introduced by, but not captured in, changes within the recently released @apollo/federation@0.27.0. As such, this change will be released as a patch since the breaking change already accidentally happened and this is a correction to that oversight. [PR #913](apollographql/federation#913)
v0.27.0
Skip missing types while iterating over field directive usages. It's possible to capture directive usages on fields whose types don't actually exist in the schema (due to invalid composition). See PR for more details. [PR #868](apollographql/federation#868)
Capture and propagate @tag and @inaccessible directives during composition from subgraph to supergraph SDL. This unblocks upcoming work for schema construction, schema filtering (API schemas), and future Studio features. [PR #756](apollographql/federation#756)
v0.25.2
Sort composed schema using graphql-js's lexicographicSortSchema for schema ordering determinism independent of serviceList ordering. [PR #824](apollographql/federation#824)
Composition errors now include locations corresponding to the line number & column in the subgraph SDL. [PR #686](apollographql/federation#686)
v0.24.0
Expand the range of supported node versions in the package's engines specifier to include the now-tested Node.js 16. [PR #713](apollographql/federation#713)
v0.23.2
Remove lingering core-js polyfill imports, they're no longer needed (since @apollo/gateway@0.15.0 dropped support for <= Node.js v10) and their presence is problematic since core-js isn't defined as a dependency within the package. Update apollo-graphql dependency which resolves a missing dependency (sha.js) within that package. [PR #699](apollographql/federation#699)
v0.23.1
This change is mostly a set of follow-up changes for PR #622. Most of these changes are internal (renaming, etc.). Some noteworthy changes worth mentioning are: a switch to graphql-js's stripIgnoredCharacters during field set printing, an update to the join__Enum generation algorithm, and some additional assertions. [PR #656](apollographql/federation#656)
v0.23.0
BREAKING - Update CSDL to the new core schema format, implementing the currently-being-introduced core and join specs. composeAndValidate now returns supergraphSdl in the new format instead of composedSdl in the previous CSDL format. [PR #622](apollographql/federation#622)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
- `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme
Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com):
- Update frequency (including time of day and day of week)
- Pull request limits (per update run and/or open at any time)
- Out-of-range updates (receive only lockfile updates, if desired)
- Security updates (receive only security updates, if desired)
Bumps @apollo/federation from 0.10.3 to 0.27.1.
Changelog
Sourced from
@apollo/federation's changelog.... (truncated)
Commits
c1fc85bReleaseea50d3ffix(deps): NarrowgraphqlpeerDependencies to versions that actually work (...bc7f1a5Update changelogs post-release613110eReleasefdccf9fReleasec3bd6ddfix(federation): Require user-defined@tagdirective definition (#882)e9e9a66Fix trivial typo in test name (from PR #880)b288cb7fix(federation): Remove the notion of@inaccessiblefrom subgraphs (#880)ca1c258Add changelog entry89f7edaRevert to skipping missing typesDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)