Skip to content

Removed deprecated dependencies#5530

Merged
compulim merged 6 commits intomainfrom
bump-cldr-data
Aug 2, 2025
Merged

Removed deprecated dependencies#5530
compulim merged 6 commits intomainfrom
bump-cldr-data

Conversation

@compulim
Copy link
Copy Markdown
Contributor

@compulim compulim commented Aug 2, 2025
edited
Loading

Changelog Entry

Breaking changes

  • botframework-directlinespeech-sdk no longer ponyfill AbortController, it is supported by modern browsers, in PR #5530

Changed

  • Removed abort-controller-es5 package in botframework-directlinespeech-sdk package, in PR #5530, by @compulim
  • Removed request and request-progress package in cldr-data-downloader package, in PR #5530, by @copilot and @compulim

Description

This is further clean up after PR #5529 of bump dependencies.

We cannot update serve yet as serve@14.2.4 (latest) is still depending on compression@1.7.4, which depends on vulnerable version of on-headers, tracking at vercel/serve#824.

Design

Specific Changes

  • cldr-data-downloader: Removed request and request-progress as they are deprecated since 2020
    • This is partly done by GitHub Copilot Agent
  • directlinespeech-sdk: Removed abort-controller-es5 as AbortController is supported by most browsers
  • botframework-webchat-styles: Added missing esbuild dependency
  • I have added tests and executed them locally
  • I have updated CHANGELOG.md
  • I have updated documentation

Review Checklist

This section is for contributors to review your work.

  • Accessibility reviewed (tab order, content readability, alt text, color contrast)
  • Browser and platform compatibilities reviewed
  • CSS styles reviewed (minimal rules, no z-index)
  • Documents reviewed (docs, samples, live demo)
  • Internationalization reviewed (strings, unit formatting)
  • package.json and package-lock.json reviewed
  • Security reviewed (no data URIs, check for nonce leak)
  • Tests reviewed (coverage, legitimacy)

@compulim compulim changed the title [WIP] cldr-data-downloade: move to fetch from request [WIP] cldr-data-downloader: move to fetch from request Aug 2, 2025
@compulim compulim changed the title [WIP] cldr-data-downloader: move to fetch from request [WIP] Removed deprecated dependencies Aug 2, 2025
@compulim compulim changed the title [WIP] Removed deprecated dependencies Removed deprecated dependencies Aug 2, 2025
@compulim compulim marked this pull request as ready for review August 2, 2025 07:34
@OEvgeny OEvgeny requested a review from Copilot August 2, 2025 21:08
Copilot AI reviewed Aug 2, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR removes deprecated dependencies from the BotFramework WebChat codebase, modernizing the packages by replacing deprecated libraries with native browser APIs and updated tooling.

  • Replaced deprecated request and request-progress packages with native fetch API in cldr-data-downloader
  • Removed abort-controller-es5 ponyfill from directlinespeech package since AbortController is now natively supported in modern browsers
  • Added missing esbuild dependency to botframework-webchat-styles package

Reviewed Changes

Copilot reviewed 12 out of 13 changed files in this pull request and generated 4 comments.

Show a summary per file
File Description
packages/support/cldr-data-downloader/src/download.js Replaced request/request-progress with fetch API and implemented manual progress tracking
packages/support/cldr-data-downloader/package.json Removed deprecated request and request-progress dependencies
packages/styles/package.json Added missing esbuild dependency
packages/directlinespeech/src/createWebSpeechPonyfillFactory.js Removed import of abort-controller-es5 ponyfill
packages/directlinespeech/package.json Removed abort-controller-es5 dependency
tests/html/sendAttachmentOn/*.html Reordered test conditions for better test reliability
CHANGELOG.md Updated with breaking changes and dependency removal notes

@OEvgeny
Copy link
Copy Markdown
Collaborator

OEvgeny commented Aug 2, 2025

This closes #5483 as well

@compulim compulim merged commit 874d0c7 into main Aug 2, 2025
28 checks passed
@compulim compulim deleted the bump-cldr-data branch August 2, 2025 22:23
@pantosha pantosha mentioned this pull request Aug 22, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@OEvgeny OEvgeny OEvgeny approved these changes

@a-b-r-o-w-n a-b-r-o-w-n Awaiting requested review from a-b-r-o-w-n a-b-r-o-w-n is a code owner

@cwhitten cwhitten Awaiting requested review from cwhitten cwhitten is a code owner

@srinaath srinaath Awaiting requested review from srinaath srinaath is a code owner

@tdurnford tdurnford Awaiting requested review from tdurnford tdurnford is a code owner

@beyackle2 beyackle2 Awaiting requested review from beyackle2

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@compulim @OEvgeny