Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Hash mismatch on axios when installing with a lockfile
See original GitHub issue- Node Version: v8.9.1
- Npm Version: 5.5.1
- Yarn Version: 1.3.2
- Platform: CircleCI v1 (Ubuntu 14.04)
- Package Version: 5.0.2 and 5.0.3
Since https://github.com/contentful/contentful.js/pull/195 we get the following lockfile hash mismatch when installing on CircleCI:
$yarn install --frozen-lockfile
yarn install v1.3.2
[1/5] Validating package.json...
[2/5] Resolving packages...
⠁ [3/5] Fetching packages...
error https://github.com/contentful/axios/archive/fix/https-via-http-proxy.tar.gz: Fetch succeeded for undefined. However, extracting "https://github.com/contentful/axios/archive/fix/https-via-http-proxy.tar.gz" resulted in hash "76fe9fcbb0e5907608bf2fa55d01846493474f48", which did not match the requested hash "bb534c3cb2894129e223c56f1bdad574a7c9f1b7".
info Visit https://yarnpkg.com/en/docs/cli/install for documentation about this command.
yarn install --frozen-lockfile returned exit code 1
Action failed: yarn install --frozen-lockfile
When using forked libraries like this, these and related issues can be avoided by publishing the forked version to the npm registry under a scope (e.g., @contentful/axios) or other name (e.g., axios-contentful-fix). If you would like, I am happy to create the package and open a PR to use it here, just LMK. Thanks!
Issue Analytics
- State:
- Created 6 years ago
- Comments:7 (6 by maintainers)
Top Results From Across the Web
Is it possible to ignore the dependency hash validation of just ...
lock file saves all the dependencies versions and the hashes of the modules. I know that I can globally disable this hash checking...
Read more >File Locking - GitLab Docs
This is the method used for Exclusive File Locks. Install Git LFS. Before getting started, make sure you have Git LFS installed in...
Read more >pnpm install
pnpm install is used to install all dependencies for a project. In a CI environment, installation fails if a lockfile is present but...
Read more >node --openssl-legacy-provider - You.com | The search engine you ...
js /app # Install all the dependencies RUN yarn install --frozen-lockfile RUN ... Error: error:0308010C:digital envelope routines::unsupported at new Hash ...
Read more >[Solved]-Forked VueJS app gives error on npm install-Vue.js
There is a message that lock file version is old, this means that it was created with another version of NPM (v6), this...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
@SpainTrain Good news! We had time pairing on this today, and there’s
v5.0.4which makes use of@contentful/axiosHi @SpainTrain , as @zcei said we’ll try to pair on this today and fix it hopefully.