Skip to content

Replace request With Native HTTP Stream Download in Fetch Providers #655

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 18 commits into
base: master
Choose a base branch
from
Draft

Replace request With Native HTTP Stream Download in Fetch Providers #655

wants to merge 18 commits into from

Conversation

@yashkohli88
Copy link
Contributor

@yashkohli88 yashkohli88 commented Nov 11, 2025

Overview

This PR removes the deprecated request package and replaces its usage for downloading packages across all supported ecosystems with a new getStream function.
It also updates dependencies and modernizes related testing and fetch logic.

Key Changes

  • New getStream function in lib/fetch.js exported to provide streaming downloads using axios.
  • Replaced all usage of request in package fetchers across:
    • Conda
    • Debian
    • Go
    • Maven
    • NPM
    • Composer
    • PyPI
    • RubyGems
  • Removed the deprecated request dependency from package.json.
  • Updated axios to version 1.11.0.
  • Updated tests and mocks to match new streaming approach, including proxyquire stubs.
  • Addressed formatting issues and cleaned up code.

Motivation

  • The request package is deprecated and no longer maintained.
  • Modern HTTP libraries like axios offer better security, support, and community engagement.
  • Uniform download logic across all ecosystem fetchers simplifies maintenance and enables enhancements.

Testing

  • Updated and added unit tests for getStream and affected providers.
  • Tests cover both direct URL and options object, as well as default headers and error handling.
  • Updated all test and mock code to use Promise-based streaming stubs for fetchers.

Closes: #573

@yashkohli88
Added getStream to replace Request dependnecy for downloading packages
5d1303f
@yashkohli88
Replaced request dependency for downloading conda packages
7ea3fe2
@yashkohli88
Replaced request dependency for downloading debian packages
5ac5bb4
@yashkohli88
Replaced request dependency for downloading go packages
db89f9f
@yashkohli88
Replaced request dependency for downloading maven packages
8cf4ab9
@yashkohli88
Replaced request dependency for downloading npm packages
f0d1b8b
@yashkohli88
Replaced request dependency for downloading composer packages
04614db
@yashkohli88
Replaced request dependency for downloading pypi packages
e18f944
@yashkohli88
Replaced request dependency for downloading ruby packages
b7728a7
@yashkohli88
Fixed formatting
6066b57
@yashkohli88
Remove deprecated dependency request
7c53f72
@yashkohli88
Updated axios dependency to latest version 1.11.0
1cac3d6
@yashkohli88
Fix formatting
5e8fa04
@yashkohli88
Replaced request dependency for downloading conda packages
11b7946
@yashkohli88
Replaced request dependency for downloading conda packages
6f97fc3
@yashkohli88
Fix formatting
e8a6b7d
@yashkohli88
Updated requestretry with axios-retry
ebe56f9
@yashkohli88
Revert "Updated requestretry with axios-retry"
bcedab3 
This reverts commit e66e2b5.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@yashkohli88