This repository has been archived by the owner on Aug 11, 2022. It is now read-only.
npm install (6.1.0) doesn't update package-lock.json when using Git URL as dependency #21203
Open
2 of 5 tasks
I'm opening this issue because:
What's going wrong?
npm install (6.1.0) doesn't update package-lock.json when using Git URL as dependency. In our team, devs are using
npm i
while devops are usingnpm ci
, so that the application behaves quite differently during the deliver cycle due to inconsistent lock packages. This issue doesn't exist in npm 5.7.0 and below.How can the CLI team reproduce the problem?
npm install
in package.lock.masterplease notice that the package-lock.json wasn't updated even though the dependency has a new commit, however,
node index.js
still somehow uses the latest code from dependency.rm -rf node_modules
and donpm ci
in package.lock.master.please notice that this time,
node index.js
generates square result.supporting information:
npm -v
prints: 6.1.0node -v
prints: v8.11.3npm config get registry
prints: https://registry.npmjs.org/The text was updated successfully, but these errors were encountered: