Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Axios ^0.19.0 upgrade is not available in NPM registry
See original GitHub issueHi guys,
I’m not sure what’s going on, however, the latest version of analytics-node 3.4.0-beta.1 doesn’t come with Axios ^0.19.0 from NPM registry.
If you try to download the library through this NPM registry link, you will see that the Axios version is ^0.18.1. I double checked the NPM registry JSON here and the Axios version specified is indeed ^0.18.1 as above.
Are you guys aware of this issue? (if this is an actual issue). Thank you for this great library
"3.4.0-beta.1": {
"name": "analytics-node",
"version": "3.4.0-beta.1",
"description": "The hassle-free way to integrate analytics into any Node.js application",
"license": "MIT",
"repository": {
"type": "git",
"url": "git+https://github.com/segmentio/analytics-node.git"
},
"author": {
"name": "Segment",
"email": "tools+npm@segment.com",
"url": "https://segment.com"
},
"engines": {
"node": ">=4"
},
"size-limit": [
{
"limit": "25 KB",
"path": "index.js"
}
],
"scripts": {
"dependencies": "yarn",
"size": "size-limit",
"test": "standard && nyc ava && .buildscript/e2e.sh",
"report-coverage": "nyc report --reporter=lcov > coverage.lcov && codecov",
"np": "np --no-publish",
"release": "yarn run np"
},
"keywords": [
"analytics",
"stats",
"segment.io",
"segmentio",
"segment",
"client",
"driver"
],
"dependencies": {
"@segment/loosely-validate-event": "^2.0.0",
"axios": "^0.18.1",
"axios-retry": "^3.0.2",
"lodash.isstring": "^4.0.1",
"md5": "^2.2.1",
"ms": "^2.0.0",
"remove-trailing-slash": "^0.1.0",
"uuid": "^3.2.1"
},
"devDependencies": {
"ava": "^0.25.0",
"basic-auth": "^2.0.1",
"body-parser": "^1.17.1",
"codecov": "^3.0.0",
"commander": "^2.9.0",
"delay": "^4.2.0",
"express": "^4.15.2",
"nyc": "^14.1.1",
"pify": "^4.0.1",
"sinon": "^7.3.2",
"size-limit": "^1.3.5",
"snyk": "^1.171.1",
"standard": "^12.0.1"
},
"gitHead": "28a2b942d64b57a92fd0167044f73fa504ed8037",
"bugs": {
"url": "https://github.com/segmentio/analytics-node/issues"
},
"homepage": "https://github.com/segmentio/analytics-node#readme",
"_id": "analytics-node@3.4.0-beta.1",
"_nodeVersion": "10.16.0",
"_npmVersion": "6.9.0",
"dist": {
"integrity": "sha512-+0F/y4Asc5S2qhWcYss+iCob6TTXQktwbqlIk02gcZaRxpekCbnTbJu/rcaRooVHxqp9WSzUXiWCesJYPJETZQ==",
"shasum": "f348d60fb25f15d481ad2c2bdef53c29384b4a5e",
"tarball": "https://registry.npmjs.org/analytics-node/-/analytics-node-3.4.0-beta.1.tgz",
"fileCount": 5,
"unpackedSize": 19197,
"npm-signature": "-----BEGIN PGP SIGNATURE-----\r\nVersion: OpenPGP.js v3.0.4\r\nComment: https://openpgpjs.org\r\n\r\nwsFcBAEBCAAQBQJdC87KCRA9TVsSAnZWagAA3p4P/jGhGo/ropKnD/lw8lF2\njhzDtZ4ugoDG5pPBxE38ZZdyz0iRfoE285Xn+9b5GhpTATEcTbJsEXFUn8B2\nYk1rfWnPjGYeqWuTCgwJCjdDI7M88uOWJaAq0NCkaNXurxgYuZgC4ZwTpfO5\n7cni0bYBcyBIRTdGvAE2SbOGG3Z9UnFw7+Qd7N6ndj50VhB5ysLrmw3Gj85V\nKaUaLr6bglZVe8qPR0LfjHKmtU7OlR/rReDwJXQMYnNIImy8oNayBK4Bd/Qr\nT542Xyz4x13B6quFvpUSBGF+QMi1irkJdeU7U5I8zui9psSPoGET+2McxbgN\nDTsASshU3MuEvKNdy3ZaNubvugJ0cjyGQEVyNNfMRep5K0d3DP4vMol9wPVf\nipGc4flEmqPvKXJr5Y15gAMIoD3ZCLUpenVclLKiRqcyudgvwqSXjs4tu8hK\ntJE6uWt/pPZw+8DAfjHJ/+e91odCmX122f5B+tJWMDdrSQcjstHvK1LiP3IJ\nPxpscoy54jxq2JK/4/zgH4oqwsMnmRyK34LHcubgFF+s2WvvT3zoYt6O5Zxd\nJPg5raVX6P0mPCRwWDtSIgJ6gs95FnRigQT/yFhuELQZMP9Mn0wS6RzCQDD9\nNSnZG8j+xf9+yjYcmeYRaWNo7XIyV5+rWgGL8d9Q/geDa++KJHD+fDZVhEPo\nY0F7\r\n=/8dR\r\n-----END PGP SIGNATURE-----\r\n"
},
"maintainers": [
{
"email": "f2prateek@gmail.com",
"name": "f2prateek"
},
{
"email": "ilya@segment.io",
"name": "ivolo"
},
{
"email": "tools+npm@segment.com",
"name": "segment-admin"
},
{
"email": "tools@segment.com",
"name": "segmentio"
},
{
"email": "me@stephenmathieson.com",
"name": "stephenmathieson"
}
],
"_npmUser": {
"name": "segment-admin",
"email": "tools+npm@segment.com"
},
"directories": {},
"_npmOperationalInternal": {
"host": "s3://npm-registry-packages",
"tmp": "tmp/analytics-node_3.4.0-beta.1_1561054921395_0.2930141828018804"
},
"_hasShrinkwrap": false
}```Issue Analytics
- State:
- Created 4 years ago
- Reactions:5
- Comments:5 (1 by maintainers)
Top Results From Across the Web
Why did npm update axios fail to update but npm uninstall ...
I run yarn upgrade axios but it failed too. I had thought there maybe a module required 0.19.2 so I checked package-lock.json and...
Read more >Axios - npm
Promise based HTTP client for the browser and node.js. Latest version: 1.2.2, last published: a day ago. Start using axios in your project...
Read more >axios - npm
Start using axios in your project by running `npm i axios`. There are 91534 other projects in the npm registry using axios.
Read more >0.19.0 - axios - npm
Start using axios in your project by running `npm i axios`. There are 91272 other projects in the npm registry using axios.
Read more >vue-axios - npm
A small wrapper for integrating axios to Vuejs. Latest version: 3.5.2, ... There are 518 other projects in the npm registry using vue-axios....
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Is this project still being maintained? The last release was more than half a year ago, and this security vulnerability has been there for a long time.
The need for the update is due to a security vulnerability: https://github.com/axios/axios/issues/2131