Using a monorepo with workspaces for Standalone Core JS packages

1. +1
2. core-ui-js ? (to avoid confusion with https://www.npmjs.com/package/core-js)
3. yarn + lerna

Why not just put it back to Drupal-CORE? You can publish packages from CORE also

- It's already no github.com like a portal for marketing, easy contribution
- The repo almost controlled by the same DrupalCore maintainers (100% now)
- most things still on d.org. Gitlab is almost useless for normal contributors

The only Pros is diff Testing system?

Just make a new rule for CORE commit. Package maintainers can self-review their own stuff. That's all done.

I've opened a request in the site moderators issue queue https://www.drupal.org/project/site_moderators/issues/3217884

We have the drupal_js namespace on d.o need to transform it into a general project.

This was done #3220446: Change project 'drupal_js' into a general project

Would the monorepo be used for the upstream-of-core projects only (once, a11y_autocomplete) or also the downstream ones (theoretically like decoupled_menus_parser)?

Edited for incorrect project name.

I personally like using monorepos but I think there are some downsides in them. I'm also wondering how much of a burden the current situation is where code is split into multiple repositories. It's possible to view the issue queues in a single search https://www.drupal.org/project/issues/search?projects=once.js%2C+Accessi.... Small repositories make it easier for people to contribute since they don't have to worry about other packages. As an infrequent contributor to some projects, I've personally found it much harder to contribute to projects that are in a monorepo due to the cognitive overhead.

Since we don't have many dependencies between our packages, some of the overhead on package management and build tooling in monorepo might be unwarranted. Also there are some limitations to versioning because using branches become more complex. It seems like that is being discussed in #3221263: [policy] Monorepo packages release management.

The fact that all packages in a monorepo are required to move at the same speed can cause some issues when the monorepo grows. For example, if you want to update the node version, it needs to happen at once in all of the packages. It’s not a big problem now when we don’t have that many packages. However, when the number of the packages increase, and there’s more maintainers, it might cause some issues. For example, if there’s one person mainly maintaining one of the packages, but they are not available to help, it might prevent us from updating rest of the packages while we are waiting for their help.

We need to also consider the impact on security releases. One downside is that when there's a security release, we'd need to freeze commits to all packages in the monorepo.

Have we considered adding committers to individual packages? If we move packages to a monorepo, it would be something we couldn't do anymore.

we'd need to freeze commits to all packages in the monorepo

I don't believe that would be the case but maybe I'm misunderstanding - could you elaborate?

Have we considered adding committers to individual packages? If we move packages to a monorepo, it would be something we couldn't do anymore.

We could use codeowners for this in GitLab

What was the cause of the cognitive overhead specifically?

I think the cause for the cognitive overhead is the additional tooling required for managing monorepos, and understanding how changes are managed in a monorepo. I don't think I have any very specific examples but I feel like overall I've had hard time contributing to projects using monorepo due to its complexity. I think this is something that could be tackled by providing documentation, but it will certainly take conscious effort to do that.

That is true for now but once we publish eslint, prettier, stylelint, browserlist, etc. config we're going to have a few deps between our pakcages.

Makes sense! 👍

Not sure that is the case, we don't plan on using the same version for all packages (like babel is doing), each package has it's own version and we can update it when we want.

But for example if we are updating to Webpack 4 and we have multiple packages utilizing it. Wouldn't we have one issue that will upgrade all of the packages using Webpack at one issue so that we don't need to depend on multiple versions of Webpack?

That is the current core policy but in our case we'd need to freeze commits that touch the package in question, not everything. We'll need to update some core guidelines but don't think it's a showstopper.

How is that different from core? If there's a security release to one of the core modules, all of core is frozen at the time of a security release. Maybe that's something that could be changed, but it would be useful to have someone from the security team provide input on that.

all of core is frozen at the time of a security release

That's a consequence of core's branching policies rather than a technical limitation, which we can approach differently in a new repo