Hi there, thank you for this awesome ecosystem of packages.

I am a developer in the NixOS ecosystem where we package a lot of Node.js-based projects and I encounter a lot in some build phase or install phase a warning of the form:

Why you should do it regularly:
https://github.com/browserslist/browserslist#browsers-data-updating
Browserslist: caniuse-lite is outdated. Please run:
npx browserslist@latest --update-db

I think it is relevant, but I wonder if there is a way to have an environment variable to prevent them from appearing as in a highly reproducible environment, it is too late to worry about update or not, all dependencies are pinned and most of the time, we are in an offline environment without network access. Having such a thing would greatly improve the quality of build logs and make it easier to read for users and maintainers.

What do you think?

When I try command "npx update-browserslist-db@latest" I got error: "Error: Cannot find module 'browserslist'". I suppose it occurs because package is installing every time I try this command (because in package.json of update-browserslist-db name of command is browserslist-lint) and package tries to require("browserslist") which can't be find from global scope. I tried npm i -g browserslist but no result. Command "npx browserslist-lint" works correctly. Is regulary installing of update-browserslist-db expected?

When I build my app I get prompted (several times) to run npx browserslist@latest --update-db. However, when I do I get an error TypeError: Cannot read properties of undefined (reading 'replace')

Steps to reproduce

git clone [email protected]:captbaritone/webamp.git
cd webamp
yarn
npx browserslist@latest --update-db

Actual outcome

╭─[00:00]: captbaritone at moffo in ~/tmp/webamp on branch*
╰─➤ npx browserslist@latest --update-db
Browserslist: caniuse-lite is outdated. Please run:
  npx browserslist@latest --update-db
  Why you should do it regularly: https://github.com/browserslist/browserslist#browsers-data-updating
Latest version:     1.0.30001412
/Users/captbaritone/tmp/webamp/node_modules/@babel/core/node_modules/browserslist/update-db.js:155
          ? lines[3].replace(
                     ^

TypeError: Cannot read properties of undefined (reading 'replace')
    at /Users/captbaritone/tmp/webamp/node_modules/@babel/core/node_modules/browserslist/update-db.js:155:22
    at Array.forEach (<anonymous>)
    at updateYarnLockfile (/Users/captbaritone/tmp/webamp/node_modules/@babel/core/node_modules/browserslist/update-db.js:141:10)
    at updateLockfile (/Users/captbaritone/tmp/webamp/node_modules/@babel/core/node_modules/browserslist/update-db.js:226:12)
    at updatePackageManually (/Users/captbaritone/tmp/webamp/node_modules/@babel/core/node_modules/browserslist/update-db.js:232:22)
    at updateDB (/Users/captbaritone/tmp/webamp/node_modules/@babel/core/node_modules/browserslist/update-db.js:327:5)
    at Object.<anonymous> (/Users/captbaritone/tmp/webamp/node_modules/@babel/core/node_modules/browserslist/cli.js:42:3)
    at Module._compile (node:internal/modules/cjs/loader:1120:14)
    at Module._extensions..js (node:internal/modules/cjs/loader:1174:10)
    at Module.load (node:internal/modules/cjs/loader:998:32)

Node.js v18.7.0

Versions

╭─[00:00]: captbaritone at moffo in ~/tmp/webamp on branch*
╰─➤ node --version
v18.7.0
╭─[00:00]: captbaritone at moffo in ~/tmp/webamp on branch*
╰─➤ yarn --version
1.22.10
╭─[00:00]: captbaritone at moffo in ~/tmp/webamp on branch*
╰─➤ npm --version
8.15.0
╭─[00:00]: captbaritone at moffo in ~/tmp/webamp on branch*
╰─➤ npx --version
8.15.0

Observation

I was prompted to report this issue here via this tweet but in filing this issue I realized that the command I was prompted to run npx browserslist@latest --update-db is different than the on in this repository's readme, which is: npx update-browserslist-db@latest.

If I run npx update-browserslist-db@latest I get a better outcome (full output of that can be found in this gist)

Line of code: here You can see that 2-space-indentation is hardcoded for new package-lock.json file. Is it possible to detect package-lock.json indentation? And if no is it possible to make option "tabWidth" for set this value?

To aid developers we have a variety of preinstall scripts present. These do not work similarly on CI (which is where we run this script). Would it be an option to disable running the scripts on yarn add altogether?

Fix browserslist/update-db#12

I tried to run cli.js on our pnpm repository and it succeeded, so it seems the fix does the job 🙌.

$ node ../contrib/browserslist-update-db/cli.js 
Latest version:     1.0.30001416
Updating caniuse-lite version
$ pnpm up caniuse-lite
caniuse-lite has been successfully updated

No target browser changes

The unit tests succeeded when run on my machine, I'm not sure how to add another one for the new condition though. If you have any advice for that, I'm keen to hear it. You probably already know that but the tests also produced a lot of warnings like the following. It looks like it is a transitive dependency:

npm WARN deprecated [email protected]: flatten is deprecated in favor of utility frameworks such as lodash.

After the first run of npx -y update-browserslist-db@latest in our project, it messed up package-lock.json formatting, see:

This is on my colleague's PC (windows, I believe)

This is on my PC (Ubuntu, WSL2):

This is my output:

After that, I changed nothing re-running the command worked just fine. Can't reproduce anymore.

Hi, I'm using pnpm and trying to update my browserslist db. I tried running $ pnpm dlx update-browserslist-db but it throws an error because it tries to run npm at some point:

/home/myuser/.local/share/pnpm/store/v3/tmp/dlx-415634/node_modules/.pnpm/[email protected]/node_modules/update-browserslist-db/cli.js:39
      throw e
      ^

Error: Command failed: npm show caniuse-lite --json
    at checkExecSyncError (node:child_process:871:11)
    at Object.execSync (node:child_process:943:15)
    at getLatestInfo (/home/jmasson/.local/share/pnpm/store/v3/tmp/dlx-415634/node_modules/.pnpm/[email protected]/node_modules/update-browserslist-db/index.js:72:18)
    at updateDB (/home/jmasson/.local/share/pnpm/store/v3/tmp/dlx-415634/node_modules/.pnpm/[email protected]/node_modules/update-browserslist-db/index.js:259:16)
    at Object.<anonymous> (/home/jmasson/.local/share/pnpm/store/v3/tmp/dlx-415634/node_modules/.pnpm/[email protected]/node_modules/update-browserslist-db/cli.js:34:5)
    at Module._compile (node:internal/modules/cjs/loader:1119:14)
    at Module._extensions..js (node:internal/modules/cjs/loader:1173:10)
    at Module.load (node:internal/modules/cjs/loader:997:32)
    at Module._load (node:internal/modules/cjs/loader:838:12)

I don't have npm installed which explains why the command fails. From quickly reading the code it looks like this command has a yarn version but not a pnpm one. Is there a workaround to this issue ?

https://github.com/browserslist/update-db/blob/dd50e379d141a0bf4c259a2bc07d3bc1e68705f7/index.js#L59-L72

I have package-lock.json with CRLF EOL. After running npx -y update-browserslist-db@latest it gets converted into LF. Same for npx -y browserslist@latest --update-db.

Will create PR to address this shortly.