- Use only the
package.jsonmanifest - Run
npm install - Check
/tmp/world.txt(should be empty) - Update the
package-lock.jsonfile with the one provided in this gist - Run
rm -rf node_modules/ && npm install(notice how it's necessary in this vector to remove the node_modules/ folder) - Confirm
/tmp/world.txtis now created on the filesystem
Created
December 23, 2019 22:51
-
-
Save lirantal/900f121739f004c8c463d56bd0de125f to your computer and use it in GitHub Desktop.
lockfile-lint concerns with package.lock
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "name": "lla", | |
| "version": "1.0.0", | |
| "lockfileVersion": 1, | |
| "requires": true, | |
| "dependencies": { | |
| "ms": { | |
| "version": "2.1.1", | |
| "resolved": "https://github.com/lirantal/ms/tarball/master", | |
| "integrity": "sha512-DlpjtaUS9RFy3q9oagI6RWUkIIk8UOJ+ZwxqlZ+y3sKvk3n93nD9gL/Nw06xI5i8YTqT9Q5znTs6HzVZO9BjDQ==" | |
| }, | |
| "signal-exit": { | |
| "version": "3.0.2", | |
| "resolved": "https://registry.npmjs.org/signal-exit/-/signal-exit-3.0.2.tgz", | |
| "integrity": "sha1-tf3AjxKH6hF4Yo5BXiUTK3NkbG0=" | |
| } | |
| } | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "name": "lla", | |
| "version": "1.0.0", | |
| "description": "", | |
| "main": "index.js", | |
| "scripts": { | |
| "test": "echo \"Error: no test specified\" && exit 1" | |
| }, | |
| "keywords": [], | |
| "author": "", | |
| "license": "ISC", | |
| "dependencies": { | |
| "ms": "^2.1.1", | |
| "signal-exit": "^3.0.2" | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment