Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Package-lock.json missing some deps compared to npm's version #62

Open
sebastienroux opened this issue Oct 7, 2020 · 1 comment
Open

Package-lock.json missing some deps compared to npm's version #62

sebastienroux opened this issue Oct 7, 2020 · 1 comment

Comments

@sebastienroux
Copy link

sebastienroux commented Oct 7, 2020
edited
Loading

Issue description:

After converting yarn.lock, generated package-lock.json is missing some dep declaration and some "dev" flags (using 1.9.4)
Capture d’écran 2020-10-07 à 17 26 01

Here all json/lock files : https://gofile.io/uploadFiles
Or directly attached (beware of .txt extension)
package-lock-npm.json.txt
package-lock-synp.json.txt
package.json.txt
yarn.lock.txt

I made a gitlab project for testing synp AND https://github.com/jeremylong/DependencyCheck.
https://gitlab.com/boloss/test-dependency-check
You can fork it if you want
@antongolub
Copy link
Collaborator

antongolub commented Oct 8, 2020
edited
Loading

@sebastienroux

As I can see, we now have false-positive dev flags. It will take some time to clarify how the npm implements this logic.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sebastienroux @antongolub