dependabot-core icon indicating copy to clipboard operation
dependabot-core copied to clipboard
verified publisher icon dependabot

Fix ArgumentError Malformed version number string in NPM & Yarn

Open amazimbe opened this issue 1 year ago • 0 comments

Is there an existing issue for this?

Sentry link: https://github.sentry.io/issues/5450311195/events/c10de4ced9be414f9cc2876e5008a539/ https://github.sentry.io/issues/5450311195/events/99e103d789dd44cdb76122d9a2e2869c/?project=1451818

  • [X] I have searched the existing issues

Package ecosystem

npm

Package manager version

No response

Language version

No response

Manifest location and content before the Dependabot update

No response

dependabot.yml content

No response

Updated dependency

No response

What you expected to see, versus what you actually saw

We need to discuss and agree how we handle git commit SHAs when they are presented as the version. Should we just raise an error? How can we compare SHAs?

What I'm seeing:

ArgumentError
Malformed version number string 2.4.1
(node:7461) V8: /home/dependabot/dependabot-updater/repo/.yarn/plugins/@yarnpkg/plugin-interactive-tools.cjs:45727 Invalid asm.js: Unexpected token

ArgumentError
Malformed version number string 9a829aed8932ab58ed4027ebec01051043551373

Native package manager behavior

No response

Images of the diff or a link to the PR, issue, or logs

No response

Smallest manifest that reproduces the issue

No response

amazimbe avatar Aug 05 '24 08:08 amazimbe