Update BaseNpmLockHandler to handle latest pacakge-lock.json file#4749
Draft
uttam282005 wants to merge 2 commits intoaboutcode-org:developfrom
Draft
Update BaseNpmLockHandler to handle latest pacakge-lock.json file#4749uttam282005 wants to merge 2 commits intoaboutcode-org:developfrom
BaseNpmLockHandler to handle latest pacakge-lock.json file#4749uttam282005 wants to merge 2 commits intoaboutcode-org:developfrom
Conversation
uttam282005
changed the title
uttam282005
changed the title
BaseNpmLockHandler to handle latest pacakge-lock.json file
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Fixes #3493
add support for file indirections in
versionfieldfrom official npm docs for package-lock.json file (version: 11.10.0 latest)
docs
Dependency objects have the following fields-
version: a specifier that varies depending on the nature of the package, and is usable in fetching a new copy of it.
bundled dependencies: Regardless of source, this is a version number that is purely for informational purposes.
registry sources: This is a version number. (eg, 1.2.3)
git sources: This is a git specifier with resolved committish. (eg, git+https://example.com/foo/bar#115311855adb0789a0466714ed48a1499ffea97e)
http tarball sources: This is the URL of the tarball. (eg, https://example.com/example-1.3.0.tgz)
local tarball sources: This is the file URL of the tarball. (eg file:///opt/storage/example-1.3.0.tgz)
local link sources: This is the file URL of the link. (eg file:libs/our-module)
Tasks
Run tests locally to check for errors.