Cannot run audit #20604
Comments
facing similar issue, npm is 6.0.1 and node is 8.11.1 |
I have the same problem with
yields the following
Otherwise with a package reference like
then I'm using Node 8.9.4 and NPM 6.0.1 |
Face the same problem
for my case
causes this issue |
Facing the same issue.
npm --version = 6.0.1 |
+1 from me as well |
Need help resolving the same issue. |
Same here
|
same here
|
Returns: GET method not allowed, even though is POST method (tested sending POST requests to that endpoint)
|
same on npm@6.1.0 node@9.11.1 |
|
Solved with:
|
Looks as if references to any package that isn't a version number breaks the audit. I had one package pointing to a local directory and audit would break, to fix I
Definitely not ideal, any idea if this is a bug or expected behaviour? |
@quinnlangille thanks for the research. Btw there's a small typo: |
I was getting the same error as @vhanla:
This appears to be due to the fact that registry URL is http instead of https. That POST is returning a 301 redirect to the https url. I'm not sure why the redirect is not followed, but this seems to be the source of the problem. The JSON parsing error that is logged comes from when npm attempts to decode the JSON from the empty response body (via a call to @vhanla I think your problem will be resolved if you use the https registry instead:
I also have the same problem @quinnlangille describes above, and removing the dependency that points to a local file also fixed the issue for me. |
the above does not work for me. I think the issue is something else. My registry is pointing to the correct HTTPS link and I also don't have any local files dependencies in my package.json file
and i still get errors |
Similar to what @quinnlangille reports, a package installed from GitHub was breaking it for me. This works around it #20604 (comment) |
Why is this issue closed if it still is unresolved??? |
@XinfinityoO if you remove the empty string from bluebird then delete your |
@paranoico this issue isn't closed. Post #20661 was closed, which is what the |
I'm thinking... Remove the |
Workaround doesn't work for me:
|
👍 |
I have the same issue if my package.json includes samlp@3.4.0 module.
I think it's because samlp contains this dependency:
|
Same issue:
From npm config list: Putting
while putting Does something need to be done on the repository to make |
Ah so you use your own private registry / proxy? |
@DanielRuf Yes... we access the npm repo via a proxy. Just found this (https://www.jfrog.com/jira/browse/RTFACT-16670), so it is definitely a jFrog Artifactory issue. |
This issue happens for me without using a private registry / proxy though. |
So, is this issue because our internet connection or something else ? |
I'm opening this issue because:
What's going wrong?
npm audit
results in a400 Bad Request - POST https://registry.npmjs.org/-/npm/v1/security/audits
How can the CLI team reproduce the problem?
Run
npm audit
withn
managing node installationssupporting information:
npm -v
prints:6.0.1
node -v
prints:v10.0.0
(same result withv8.5.0
)npm config get registry
prints:https://registry.npmjs.org/
The text was updated successfully, but these errors were encountered: