Skip to content

RandomByte/npm-shrinkwrap-test

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

npm-shrinkwrap-test

Showcase for issue npm/cli#4323

Steps to reproduce

This package has a dependency to @ui5/cli in version ^3.0.0-alpha.1. A known devDependency of @ui5/cli is ava. This, as well as other devDependencies are unexpectedly installed, even though they are marked as "dev": true in the npm-shrinkwrap.json of @ui5/cli.

  1. git clone git@github.com:RandomByte/npm-shrinkwrap-test.git && cd npm-shrinkwrap-test
  2. npm install
  3. Check for a known devDependency and notice that it has been installed: 
    npm ls -a | grep 'ava'
> ├─┬ ava@3.15.0 extraneous
  4. npm prune --production removes the ava package. But a following npm install will install it again

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors