Skip to content

Upgrade @langchain packages to fix npm ci ERESOLVE failure#19

Draft
Copilot wants to merge 2 commits into
mainfrom
copilot/upgrade-langchain-packages
Draft

Upgrade @langchain packages to fix npm ci ERESOLVE failure#19
Copilot wants to merge 2 commits into
mainfrom
copilot/upgrade-langchain-packages

Conversation

Copy link
Copy Markdown

Copilot AI commented Nov 30, 2025
edited
Loading

CI fails at npm ci with ERESOLVE because @langchain/google-genai@1.0.3 requires peer @langchain/core@1.0.6 exactly, while other packages resolve to @langchain/core@1.1.x.

Changes

Updated package.json to align @langchain package versions:

  • @langchain/anthropic: ^1.0.0 → ^1.1.0
  • @langchain/core: ^1.0.3 → ^1.1.0
  • @langchain/google-genai: ^1.0.0 → ^2.0.0 (1.1.x doesn't exist; 2.0.0 requires core@1.1.0)
  • @langchain/langgraph: ^1.0.1 → ^1.0.2
  • @langchain/openai: ^1.0.0 → ^1.1.0
  • langchain: ^1.0.3 → ^1.1.0

All peer dependencies now compatible with @langchain/core@1.1.0.

Warning

Firewall rules blocked me from connecting to one or more addresses (expand for details)

I tried to connect to the following addresses, but was blocked by firewall rules:

  • https://api.github.com//advisories
    • Triggering command: /home/REDACTED/work/_temp/ghcca-node/node/bin/node /home/REDACTED/work/_temp/ghcca-node/node/bin/node --enable-source-maps /home/REDACTED/work/_temp/copilot-developer-action-main/dist/index.js (http block)

If you need me to access, download, or install something from one of these locations, you can either:

Original prompt

Problem summary:
The CI job (56717663968) fails at npm ci with ERESOLVE due to a peerDependency conflict between @langchain packages. Logs show @langchain/google-genai@1.0.3 requires peer @langchain/core@1.0.6, while the project installs @langchain/core@1.1.x, causing npm to abort with ERESOLVE.

Goal (long-term, correct fix):
Upgrade all @langchain/* packages (and the top-level langchain package) in package.json to matching 1.1.x versions so peerDependency requirements are consistent with @langchain/core@1.1.0 already present in the resolved install. This fixes the root cause rather than using --legacy-peer-deps.

Files to change:

  • package.json (update dependency versions for the following keys in the "dependencies" section):
    • @langchain/anthropic
    • @langchain/core
    • @langchain/google-genai
    • @langchain/langgraph
    • @langchain/openai
    • langchain

Proposed package.json dependency changes (apply these version bumps):

  • "@langchain/anthropic": "^1.1.0",
  • "@langchain/core": "^1.1.0",
  • "@langchain/google-genai": "^1.1.0",
  • "@langchain/langgraph": "^1.1.0",
  • "@langchain/openai": "^1.1.0",
  • "langchain": "^1.1.0",

Rationale:

  • Aligning all @langchain packages (and langchain) to the same minor release (1.1.x) ensures peerDependencies are compatible and avoids ERESOLVE in npm ci. This is a long-term fix because it keeps the dependency set coherent.

What the pull request will do:

  • Update package.json with the version changes above.
  • Include a PR description explaining the CI failure and the verification steps.

Verification steps the PR will include:

  1. CI should run npm ci successfully (no ERESOLVE). The GitHub Actions job that previously failed is .github/workflows/pr-analyzer.yml (job run ref: 4801862). Check that npm ci completes.
  2. Build: npm run build should finish without errors.
  3. Optional: Run any unit tests (npm test) or a smoke run of the action if applicable.

Notes and follow-up:

  • If any langchain package does not have a 1.1.x release compatible with core@1.1.0, I'll adjust the PR to pin the minimal set required or coordinate upgrades across packages.
  • The PR will not change lockfiles (package-lock.json) directly here; CI will regenerate the lockfile when installing, but if you prefer, we can also update package-lock.json in this PR after running npm install locally.

References:

Please confirm and I will open the pull request that applies the package.json version changes and a short PR description with verification steps.

This pull request was created as a result of the following prompt from Copilot chat.

Problem summary:
The CI job (56717663968) fails at npm ci with ERESOLVE due to a peerDependency conflict between @langchain packages. Logs show @langchain/google-genai@1.0.3 requires peer @langchain/core@1.0.6, while the project installs @langchain/core@1.1.x, causing npm to abort with ERESOLVE.

Goal (long-term, correct fix):
Upgrade all @langchain/* packages (and the top-level langchain package) in package.json to matching 1.1.x versions so peerDependency requirements are consistent with @langchain/core@1.1.0 already present in the resolved install. This fixes the root cause rather than using --legacy-peer-deps.

Files to change:

  • package.json (update dependency versions for the following keys in the "dependencies" section):
    • @langchain/anthropic
    • @langchain/core
    • @langchain/google-genai
    • @langchain/langgraph
    • @langchain/openai
    • langchain

Proposed package.json dependency changes (apply these version bumps):

  • "@langchain/anthropic": "^1.1.0",
  • "@langchain/core": "^1.1.0",
  • "@langchain/google-genai": "^1.1.0",
  • "@langchain/langgraph": "^1.1.0",
  • "@langchain/openai": "^1.1.0",
  • "langchain": "^1.1.0",

Rationale:

  • Aligning all @langchain packages (and langchain) to the same minor release (1.1.x) ensures peerDependencies are compatible and avoids ERESOLVE in npm ci. This is a long-term fix because it keeps the dependency set coherent.

What the pull request will do:

  • Update package.json with the version changes above.
  • Include a PR description explaining the CI failure and the verification steps.

Verification steps the PR will include:

  1. CI should run npm ci successfully (no ERESOLVE). The GitHub Actions job that previously failed is .github/workflows/pr-analyzer.yml (job run ref: 4801862). Check that npm ci completes.
  2. Build: npm run build should finish without errors.
  3. Optional: Run any unit tests (npm test) or a smoke run of the action if applicable.

Notes and follow-up:

  • If any langchain package does not have a 1.1.x release compatible with core@1.1.0, I'll adjust the PR to pin the minimal set required or coordinate upgrades across packages.
  • The PR will not change lockfiles (package-lock.json) directly here; CI will regenerate the lockfile when installing, but if you prefer, we can also update package-lock.json in this PR after running npm install locally.

References:

Please confirm and I will open the pull request that applies the package.json version changes and a short PR description with verification steps.

💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more Copilot coding agent tips in the docs.

@aleksanderrisilia
Upgrade @langchain packages to resolve peer dependency conflicts
c515f6a 
Updated package versions:
- @langchain/anthropic: ^1.0.0 → ^1.1.0
- @langchain/core: ^1.0.3 → ^1.1.0
- @langchain/google-genai: ^1.0.0 → ^2.0.0
- @langchain/langgraph: ^1.0.1 → ^1.0.2
- @langchain/openai: ^1.0.0 → ^1.1.0
- langchain: ^1.0.3 → ^1.1.0

This fixes the ERESOLVE error where @langchain/google-genai@1.0.3
required peer @langchain/core@1.0.6 but @langchain/core@1.1.x was
installed.

Co-authored-by: aleksanderrisilia <29144915+aleksanderrisilia@users.noreply.github.com>
Copilot AI changed the title [WIP] Upgrade @langchain packages to version 1.1.x Upgrade @langchain packages to fix npm ci ERESOLVE failure Nov 30, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aleksanderrisilia aleksanderrisilia Awaiting requested review from aleksanderrisilia

Assignees

@aleksanderrisilia aleksanderrisilia

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aleksanderrisilia