Apply "files" npm whitelist at build time

[gaearon]

We should make our build step apply the same logic as npm does with whitelisting "files" field. This way issues like #11254 would get caught early.

[apravink]

Hi I'd like to work on this. Im a beginner and I would appreciate any pointers on where to start

[gaearon]

If you run yarn build in the repo root, it should start the build process.
The relevant part is probably here.

You will see that build/packages/ gets populated with content of npm packages.

I want to make sure that we respect "files" entry in package.json of each package, and skip files/folders that aren’t in the "files" whitelist. This way, if something is missing in "files" of package in packages/*/package.json, it won’t be copied to build/packages/*.

You can check that your change works with this example: #11254

yarn build -- react-art

Before the change, build/packages/react-art/lib/* would exist.

After the change, the lib folder would not be copied over to build/packages/react-art/ because it wasn’t in the "files" whitelist in packages/react-art/package.json.

[apravink]

Thanks for that!. That was really helpful!

The solution I am thinking involves parsing the package.json file for each of the packages and comparing the files/directories that are copied over to this parsed array.

Am I on the right track?

[gaearon]

Sounds about right.

[yu-tian113]

Sorry, didn't mean to hijack the issue from @apravink, was just playing with a possible fix and pushed to my repo :).
Happy to discuss.

[apravink]

@yu-tian113 Haven't had a chance to work on this so if you have a working solution, please go ahead :)

[yu-tian113]

Thanks for informing @apravink, I'll pick it up then. Please feel free to share any ideas or suggestions.