shrinkwrap should be registry-agnostic when sourcing package tarballs #6253

othiym23 · 2014-09-21T06:53:35Z

Specifically, when _resolved is an HTTP[S] link to a tarball, save the shasum as well as the URL, and ask the cache if it has a package with that shasum before hitting the network. This relies upon the content-addressible tarball cache that's part of the cache rewrite, but it should be easy enough to add once that functionality is available.

The text was updated successfully, but these errors were encountered:

othiym23 · 2016-09-01T22:57:00Z

This is absolutely a part of the roadmap for improving shrinkwrap as well as the putative, oft-discussed, never-implemented npm CLI cache rewrite. It should be possible to shrinkwrap a package by tying the lock to the package's contents rather than its URL of origin.

othiym23 added feature-request shrinkwrap labels Sep 21, 2014

othiym23 self-assigned this Sep 21, 2014

othiym23 added this to the cache rewrite milestone Sep 21, 2014

othiym23 mentioned this issue Sep 21, 2014

npm shrinkwrap ignores custom registy hostname #4454

Closed

glenjamin mentioned this issue Nov 7, 2015

npm install fails with shrinkwrap, pre-filled cache, no network #5357

Open

othiym23 added the already-looked-at label Sep 1, 2016

othiym23 removed their assignment Sep 1, 2016

zkat mentioned this issue Mar 15, 2017

Replace metadata + fetch + cache code #15666

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

shrinkwrap should be registry-agnostic when sourcing package tarballs #6253

shrinkwrap should be registry-agnostic when sourcing package tarballs #6253

othiym23 commented Sep 21, 2014

othiym23 commented Sep 1, 2016

shrinkwrap should be registry-agnostic when sourcing package tarballs #6253

shrinkwrap should be registry-agnostic when sourcing package tarballs #6253

Comments

othiym23 commented Sep 21, 2014

othiym23 commented Sep 1, 2016