Joakim Weise-Chiem
Joakim Weise-Chiem
Oh interesting, perhaps this will be solved with #4859 then? 🤔 for now I've just kept using npm 8.5.5 and the package-lock generated with that version, it works with my...
@darmentrout could you elaborate how `npm install` resolves the issue for you? For me, doing `rm -rf package-lock.json` `rm -rf node_modules` `npm install` `npm install` Still results in vulnerabilities being...
> Double `npm i` still fix the issue. npm v8.6.0 Double `npm i` with 8.6.0 does not resolve the issue, it just introduces a new package-lock in which `overrides` are...
The problem persists with npm 8.17.0 With npm 8.5.5: (1 vulnerability has been introduced since this issue for the repo mentioned in the description of this issue: https://github.com/jchiem/npm-overrides-bug)
The problem persists in npm version 8.19.2
I've ran some more tests regarding this and found that it seems to be specifically when `
Have you been publishing to npmjs or specifically verdaccio? (Is this bug just for when lerna is used to publish to verdaccio or is it also applicable when you publish...
I've set up a PR to fix the issue.
@JamesHenry any idea when the PR that I made to fix this will be released?