refactor: gets rid of semver dependency in localStorage migrations

[stalniy]

Why

To reduce bundle size

Summary by CodeRabbit

• Chores

  • Removed an external versioning dependency.

• Bug Fixes

  • Fixed version comparison logic used during migrations, including build-suffix handling.
  • Ensured pending migrations actually run when needed and the latest app version is saved to local storage.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

📝 Walkthrough

Walkthrough

Removed the semver dependency and replaced its usage with an internal compareVersions function; migration logic now strips build suffixes, compares versions with strict ordering/equality, invokes defined migration functions, and persists the updated version in localStorage.

Changes

Cohort / File(s)	Summary
Dependency removal apps/deploy-web/package.json	Removed the semver package from dependencies.
Local storage & migrations apps/deploy-web/src/utils/localStorage.ts	Replaced semver imports with an internal compareVersions(a, b); strip trailing -suffix from versions before comparing; use !== for equality checks and compareVersions(...) > 0 for ordering; call migrations[migrationVersion]() to run migrations; persist latestUpdatedVersion to localStorage after migrations.

Sequence Diagram(s)

(omitted)

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Poem

🐰
I chewed the semver string away,
Tuned versions so they hop and play,
I strip the tails and count each dot,
Run migrations tidy, neat, and taut,
A rabbit's patch — now light as day. 🥕

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the main change: removing the semver dependency from localStorage migrations code, which aligns with both the primary objective (reducing bundle size) and the file modifications.

✨ Finishing touches

• 📝 Generate docstrings

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

🔄 Carefully review the package-lock.json diff

Resolve the comment if everything is ok

+ node_modules/git-semver-tags/node_modules/conventional-commits-filter                    5.0.0   
+ node_modules/git-semver-tags/node_modules/conventional-commits-parser                    6.2.1   

[codecov]

Codecov Report

❌ Patch coverage is 0% with 14 lines in your changes missing coverage. Please review.
✅ Project coverage is 51.27%. Comparing base (f7dca1f) to head (0a5dc61).
⚠️ Report is 2 commits behind head on main.
✅ All tests successful. No failed tests found.

Files with missing lines	Patch %	Lines
apps/deploy-web/src/utils/localStorage.ts	0.00%	14 Missing ⚠️

❌ Your patch status has failed because the patch coverage (0.00%) is below the target coverage (50.00%). You can increase the patch coverage or adjust the target coverage.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #2419      +/-   ##
==========================================
- Coverage   51.29%   51.27%   -0.02%     
==========================================
  Files        1069     1069              
  Lines       29442    29451       +9     
  Branches     6508     6504       -4     
==========================================
  Hits        15101    15101              
+ Misses      14105    13944     -161     
- Partials      236      406     +170     

Flag	Coverage Δ
api	80.06% <ø> (+0.02%)	⬆️
deploy-web	31.40% <0.00%> (-0.03%)	⬇️
log-collector	75.35% <ø> (ø)
notifications	87.94% <ø> (ø)
provider-console	81.48% <ø> (ø)
provider-proxy	84.35% <ø> (ø)

Files with missing lines	Coverage Δ
apps/deploy-web/src/utils/localStorage.ts	8.57% <0.00%> (-6.82%)	⬇️

... and 94 files with indirect coverage changes

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (2)

apps/deploy-web/src/utils/localStorage.ts (2)

16-16: Improve suffix stripping regex to handle all semantic versioning formats.

The current regex /-[\w]+$/ only strips simple suffixes like -beta but doesn't fully handle semantic versioning formats. For example:

• 1.2.0-alpha.1 → leaves .1 (doesn't match dots)
• 1.2.0+build.123 → doesn't strip build metadata (no + handling)

🔎 Proposed fix for comprehensive suffix stripping

-  const currentVersion = APP_VERSION.replace(/-[\w]+$/, "");
+  const currentVersion = APP_VERSION.replace(/[-+].*$/, "");

This strips everything from the first hyphen or plus sign to the end, handling both pre-release identifiers (after -) and build metadata (after +) according to semantic versioning.

---

52-65: Consider documenting the deviation from semantic versioning rules.

The custom compareVersions implementation only compares numeric version parts (major.minor.patch) and doesn't handle semantic versioning pre-release identifiers or build metadata. This differs from the removed semver library behavior where, for example, 1.0.0-alpha < 1.0.0 according to semver rules.

Since the PR explicitly removes the semver dependency to reduce bundle size, this trade-off appears intentional. However, if the project might use pre-release versions in the future, consider adding a comment documenting this limitation.

📜 Review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 6d155c4 and 0ddade4.

⛔ Files ignored due to path filters (1)

• package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (2)

• apps/deploy-web/package.json
• apps/deploy-web/src/utils/localStorage.ts

💤 Files with no reviewable changes (1)

• apps/deploy-web/package.json

🧰 Additional context used

📓 Path-based instructions (1)

**/*.{ts,tsx,js}

📄 CodeRabbit inference engine (.cursor/rules/general.mdc)

**/*.{ts,tsx,js}: Never use type any or cast to type any. Always define the proper TypeScript types.
Never use deprecated methods from libraries.
Don't add unnecessary comments to the code.

Files:

• apps/deploy-web/src/utils/localStorage.ts

🧬 Code graph analysis (1)

apps/deploy-web/src/utils/localStorage.ts (1)

packages/releaser/.release-it.js (1)

• version (4-4)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (15)

• GitHub Check: validate (apps/provider-console) / validate-unsafe
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: Analyze (javascript-typescript)

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (2)

apps/deploy-web/src/utils/localStorage.ts (2)

20-31: Consider sorting migration versions for future-proofing.

The current code relies on object key insertion order to determine migration execution order. If a future developer adds a migration out of order (e.g., adds "0.15.0" after "3.11.1"), migrations would execute in the wrong sequence.

🔎 Proposed fix to sort migrations by version

 if (hasPreviousVersion) {
-  Object.keys(migrations).forEach(migrationVersion => {
+  Object.keys(migrations)
+    .sort(compareVersions)
+    .forEach(migrationVersion => {
     if (compareVersions(migrationVersion, version) > 0) {

---

52-65: Consider adding defensive NaN validation.

While the current callers pass stripped version strings, this function has no input validation. If Number() produces NaN (e.g., from malformed input), comparisons silently return incorrect results rather than failing explicitly.

Since the inputs are now properly sanitized at lines 16-17, the immediate risk is low. However, defensive validation would make the function more robust for potential future use.

🔎 Optional defensive validation

 function compareVersions(a: string, b: string): number {
   const partsA = a.split(".").map(Number);
   const partsB = b.split(".").map(Number);
+
+  if (partsA.some(isNaN) || partsB.some(isNaN)) {
+    throw new Error(`Invalid version format: "${a}" or "${b}"`);
+  }
+
   const maxLength = Math.max(partsA.length, partsB.length);

📜 Review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0ddade4 and d2f3c29.

⛔ Files ignored due to path filters (1)

• package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (2)

• apps/deploy-web/package.json
• apps/deploy-web/src/utils/localStorage.ts

💤 Files with no reviewable changes (1)

• apps/deploy-web/package.json

🧰 Additional context used

📓 Path-based instructions (1)

**/*.{ts,tsx,js}

📄 CodeRabbit inference engine (.cursor/rules/general.mdc)

**/*.{ts,tsx,js}: Never use type any or cast to type any. Always define the proper TypeScript types.
Never use deprecated methods from libraries.
Don't add unnecessary comments to the code.

Files:

• apps/deploy-web/src/utils/localStorage.ts

🧠 Learnings (1)

📚 Learning: 2025-07-24T17:00:52.361Z

Learnt from: baktun14
Repo: akash-network/console PR: 1725
File: apps/api/src/utils/constants.ts:5-5
Timestamp: 2025-07-24T17:00:52.361Z
Learning: In the Akash Network Console project, when cross-cutting concerns or broader refactoring issues are identified during PR review, the preferred approach is to create a separate GitHub issue to track the work rather than expanding the scope of the current PR. This maintains focus and allows for proper planning of architectural improvements.

Applied to files:

• apps/deploy-web/src/utils/localStorage.ts

🧬 Code graph analysis (1)

apps/deploy-web/src/utils/localStorage.ts (1)

packages/releaser/.release-it.js (1)

• version (4-4)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (17)

• GitHub Check: validate (apps/provider-console) / validate-unsafe
• GitHub Check: validate (packages) / validate-unsafe
• GitHub Check: validate (apps/stats-web) / validate-unsafe
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: test-build
• GitHub Check: Analyze (javascript-typescript)

🔇 Additional comments (2)

apps/deploy-web/src/utils/localStorage.ts (2)

16-18: Good fix for the version consistency issue.

Both currentVersion and version now have suffixes stripped at the point of initialization, which addresses the previous concern about getVersion() returning raw APP_VERSION. This ensures compareVersions receives clean numeric version strings.

---

37-50: Approach is valid - suffix stripping at caller site.

While line 49 still returns raw APP_VERSION, the caller (line 17) now strips suffixes. This approach works correctly, though moving the stripping into getVersion() would encapsulate the normalization logic. Current implementation is acceptable.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (3)

apps/deploy-web/src/utils/localStorage.ts (3)

16-17: Use a more robust regex for stripping version suffixes.

The current regex /-[\w]+$/ only strips a dash followed by word characters at the end, which doesn't fully handle semantic versioning formats:

• 1.0.0+build → not stripped (no dash)
• 1.0.0-alpha.1 → becomes 1.0.0.1 (leaves .1)
• 1.0.0-beta+build → becomes 1.0.0+build (leaves +build)

Semver defines prerelease and build metadata as everything after the first - or +. A more complete regex would be /[-+].*$/.

Additionally, the stripping is duplicated on both lines. Consider moving this logic into getVersion() (line 49) to strip once at the source rather than at every call site.

🔎 Proposed fix

Update the regex pattern:

-  const currentVersion = APP_VERSION.replace(/-[\w]+$/, "");
-  const version = getVersion().replace(/-[\w]+$/, "");
+  const currentVersion = APP_VERSION.replace(/[-+].*$/, "");
+  const version = getVersion().replace(/[-+].*$/, "");

Or better, eliminate duplication by moving the strip into getVersion() — see comment on line 49.

---

49-49: Consider stripping suffixes within getVersion() for better encapsulation.

While line 17 now strips the result after calling getVersion(), it would be cleaner to have getVersion() itself return a normalized version without suffixes. This:

• Eliminates duplication (currently stripped on lines 16 and 17)
• Encapsulates the normalization logic in one place
• Reduces coupling between migrateLocalStorage and version format details

🔎 Proposed refactor

 function getVersion(): string {
   const latestUpdatedVersion = localStorage.getItem("latestUpdatedVersion");

   if (latestUpdatedVersion) {
     return latestUpdatedVersion;
   }

   const isOldVersionUpgrade = Object.keys(localStorage).some(key => key.endsWith(".data") || key.endsWith(".wallet"));
   if (isOldVersionUpgrade) {
     return "1.0.0";
   }

-  return APP_VERSION;
+  return APP_VERSION.replace(/[-+].*$/, "");
 }

Then update lines 16-17 to remove the duplicate stripping:

-  const currentVersion = APP_VERSION.replace(/[-+].*$/, "");
-  const version = getVersion().replace(/[-+].*$/, "");
+  const currentVersion = APP_VERSION.replace(/[-+].*$/, "");
+  const version = getVersion();

---

52-65: Add input validation to prevent NaN in version comparisons.

While the stripping on lines 16-17 should prevent non-numeric parts from reaching compareVersions, defensive validation would make the function more robust:

• If the stripping regex is incomplete (see comment on lines 16-17), parts like "0-rc" could produce NaN
• NaN comparisons silently return incorrect results rather than failing explicitly
• Explicit validation provides clearer error messages when invalid versions are passed

🔎 Proposed validation

 function compareVersions(a: string, b: string): number {
   const partsA = a.split(".").map(Number);
   const partsB = b.split(".").map(Number);
+  
+  if (partsA.some(isNaN) || partsB.some(isNaN)) {
+    throw new Error(`Invalid version format: "${a}" or "${b}" contains non-numeric parts`);
+  }
+  
   const maxLength = Math.max(partsA.length, partsB.length);

   for (let i = 0; i < maxLength; i++) {
     const partA = partsA[i] ?? 0;
     const partB = partsB[i] ?? 0;
     if (partA > partB) return 1;
     if (partA < partB) return -1;
   }

   return 0;
 }

📜 Review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between d2f3c29 and 9ea6884.

⛔ Files ignored due to path filters (1)

• package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (2)

• apps/deploy-web/package.json
• apps/deploy-web/src/utils/localStorage.ts

💤 Files with no reviewable changes (1)

• apps/deploy-web/package.json

🧰 Additional context used

📓 Path-based instructions (1)

**/*.{ts,tsx,js}

📄 CodeRabbit inference engine (.cursor/rules/general.mdc)

**/*.{ts,tsx,js}: Never use type any or cast to type any. Always define the proper TypeScript types.
Never use deprecated methods from libraries.
Don't add unnecessary comments to the code.

Files:

• apps/deploy-web/src/utils/localStorage.ts

🧠 Learnings (1)

📚 Learning: 2025-07-24T17:00:52.361Z

Learnt from: baktun14
Repo: akash-network/console PR: 1725
File: apps/api/src/utils/constants.ts:5-5
Timestamp: 2025-07-24T17:00:52.361Z
Learning: In the Akash Network Console project, when cross-cutting concerns or broader refactoring issues are identified during PR review, the preferred approach is to create a separate GitHub issue to track the work rather than expanding the scope of the current PR. This maintains focus and allows for proper planning of architectural improvements.

Applied to files:

• apps/deploy-web/src/utils/localStorage.ts

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (19)

• GitHub Check: validate (apps/indexer) / validate-unsafe
• GitHub Check: validate (packages) / validate-unsafe
• GitHub Check: validate (apps/stats-web) / validate-unsafe
• GitHub Check: validate (apps/provider-proxy) / validate-unsafe
• GitHub Check: validate (apps/log-collector) / validate-unsafe
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: validate / validate-app
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: test-build
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: test-build
• GitHub Check: Analyze (javascript-typescript)

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (2)

apps/deploy-web/src/utils/localStorage.ts (2)

21-31: Consider adding an upper bound check to prevent running future migrations.

The condition only verifies migrationVersion > version (greater than the stored version). If a developer adds a migration for a future release while working on the current version, that migration would run prematurely.

🔎 Proposed fix

     Object.keys(migrations).forEach(migrationVersion => {
-      if (compareVersions(migrationVersion, version) > 0) {
+      if (compareVersions(migrationVersion, version) > 0 && compareVersions(migrationVersion, currentVersion) <= 0) {
         try {
           console.log(`Applying version ${migrationVersion}`);
           // Execute local storage migration
           migrations[migrationVersion]();
         } catch (error) {
           console.log(error);
         }
       }
     });

---

52-65: Implementation is correct; consider optional defensive validation.

The previous NaN concern is mitigated since line 17 strips suffixes before calling this function, and migration keys are hardcoded clean versions. For additional robustness against future misuse, you could optionally add input validation, but it's not critical given the current controlled usage.

🔎 Optional defensive validation

 function compareVersions(a: string, b: string): number {
   const partsA = a.split(".").map(Number);
   const partsB = b.split(".").map(Number);
+
+  if (partsA.some(isNaN) || partsB.some(isNaN)) {
+    throw new Error(`Invalid version format: "${a}" or "${b}"`);
+  }
+
   const maxLength = Math.max(partsA.length, partsB.length);

📜 Review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 9ea6884 and 0a5dc61.

⛔ Files ignored due to path filters (1)

• package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (2)

• apps/deploy-web/package.json
• apps/deploy-web/src/utils/localStorage.ts

💤 Files with no reviewable changes (1)

• apps/deploy-web/package.json

🧰 Additional context used

📓 Path-based instructions (1)

**/*.{ts,tsx,js}

📄 CodeRabbit inference engine (.cursor/rules/general.mdc)

**/*.{ts,tsx,js}: Never use type any or cast to type any. Always define the proper TypeScript types.
Never use deprecated methods from libraries.
Don't add unnecessary comments to the code.

Files:

• apps/deploy-web/src/utils/localStorage.ts

🧠 Learnings (1)

📚 Learning: 2025-07-24T17:00:52.361Z

Learnt from: baktun14
Repo: akash-network/console PR: 1725
File: apps/api/src/utils/constants.ts:5-5
Timestamp: 2025-07-24T17:00:52.361Z
Learning: In the Akash Network Console project, when cross-cutting concerns or broader refactoring issues are identified during PR review, the preferred approach is to create a separate GitHub issue to track the work rather than expanding the scope of the current PR. This maintains focus and allows for proper planning of architectural improvements.

Applied to files:

• apps/deploy-web/src/utils/localStorage.ts

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (16)

• GitHub Check: validate (apps/notifications) / validate-unsafe
• GitHub Check: validate / validate-app
• GitHub Check: validate (apps/provider-proxy) / should-validate-unsafe / should-validate
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: validate / validate-app
• GitHub Check: test-build
• GitHub Check: Analyze (javascript-typescript)

🔇 Additional comments (2)

apps/deploy-web/src/utils/localStorage.ts (2)

5-10: LGTM!

The migrations record structure is clean and provides a clear pattern for defining version-specific localStorage cleanup tasks.

---

37-50: LGTM!

The previous concern about returning an unstripped APP_VERSION on line 49 is now mitigated by the suffix stripping on line 17 at the call site.