Reputation: 7585
Why does npm shrinkwrap replace a version designation with a url for the from field?
I changed the name of a package I was working on and so I reran npm shrinkwrap. I didn't change any of the fields for the other dependencies.
I noticed something odd where npm shrinkwrap changed the "from" property for the pg package from:
"from": "pg@>=4.0.0 <5.0.0",
to
"from": "https://registry.npmjs.org/pg/-/pg-4.5.6.tgz",
and was curious as to why that happened.
Upvotes: 1
Views: 431
Answers (1)
Reputation: 7585
Found this thread which explains it: https://github.com/npm/npm/issues/9550
In summary, it has to do with if you delete node_modules after the first time you ran shrinkwrap, and then run shrinkwrap again. The package.json files for the individual libraries (upon which the npm-shrinkwrap.json file gets built) get constructed differently once a shrinkwrap file is in place.
Upvotes: 1
Related Questions
- Understanding NPM shrinkwrap
- npm update to specific version (and shrinkwrap)
- Why does npm-shrinkwrap flip-flops between names and URLs every time?
- Use the exact version of lib from NPM
- npm-update with npm-shrinkwrap.json
- npm shrinkwrap vs install passing the --save-exact flag
- npm shrinkwrap extraneous module
- Why does `npm install` use the shrinkwrap's 'resolved' property
- Using specific version of npm shrinkwrap
- Node.js shrinkwrapped package.json causes npm install to update new versions regardless