7 Releases published by 1 person

• v11.4.2

  published Jun 12, 2025

• arborist-v9.1.2 arborist: v9.1.2

  published Jun 12, 2025

• libnpmdiff-v8.0.5 libnpmdiff: v8.0.5

  published Jun 12, 2025

• libnpmexec-v10.1.4 libnpmexec: v10.1.4

  published Jun 12, 2025

• libnpmfund-v7.0.5 libnpmfund: v7.0.5

  published Jun 12, 2025

• libnpmpack-v9.0.5 libnpmpack: v9.0.5

  published Jun 12, 2025

• libnpmpublish-v11.0.1 libnpmpublish: v11.0.1

  published Jun 12, 2025

3 Pull requests merged by 3 people

• chore: release 11.4.2

  #8332 merged Jun 12, 2025

• Deps updates

  #8358 merged Jun 11, 2025

• fix(arborist): use hosted-git-info to correctly parse resolved git urls

  #8356 merged Jun 10, 2025

1 Pull request opened by 1 person

• feat: add support for optional env var replacements in .npmrc

  #8359 opened Jun 12, 2025

15 Issues closed by 4 people

• [BUG] npm install succeeded but update failed

  #5890 closed Jun 16, 2025

• [BUG] Wrong registry used due to package.json / package-lock.json inconsistency

  #8163 closed Jun 16, 2025

• [BUG] In node-js packages were not updated

  #8365 closed Jun 13, 2025

• [BUG] npm ERR! Exit handler never called!

  #6466 closed Jun 13, 2025

• [BUG] not working after upgrading yarn

  #4184 closed Jun 13, 2025

• [BUG] npm ERR! Cannot read properties of undefined (reading 'isStream')

  #6696 closed Jun 13, 2025

• [BUG] npm ci gives timeout error on gitlab runner

  #7076 closed Jun 13, 2025

• [BUG] "There appears to be trouble with your network connection. Retrying..."

  #7585 closed Jun 13, 2025

• [BUG] npm error 504 Gateway Timeout - GET https://registry.npmjs.org/@shopify%2fshopify-app-express

  #8362 closed Jun 12, 2025

• [DOCS] Clarification on the proper way to change settings when doing a fork

  #4897 closed Jun 12, 2025

• [BUG] Could not resolve dependency while upgrading Nodejs 18.17.1 version

  #6704 closed Jun 12, 2025

• [DOCS] libnpmhook examples are outdated

  #5558 closed Jun 12, 2025

• [DOCS]

  #6660 closed Jun 12, 2025

• [BUG] npm crashes without error message when setting "npm_config_loglevel" to an unexpected value

  #8357 closed Jun 11, 2025

• [BUG] npm 11.4.1 unable to install packages from git repo

  #8331 closed Jun 10, 2025

3 Issues opened by 3 people

• [BUG] v10 bundled dependency `brace-expansion@2.0.1` is vulnerable to ReDoS

  #8366 opened Jun 16, 2025

• [BUG] install --install-links with local path dependencies dedups packages even if the local path is different

  #8364 opened Jun 13, 2025

• [BUG] Log failed GET attempts without having to change log level

  #8361 opened Jun 12, 2025

7 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• fix(ls): correctly show deduped dependencies

  #8217 commented on Jun 17, 2025 • 4 new comments

• fix: the spinner

  #8322 commented on Jun 11, 2025 • 1 new comment

• [BUG] npm audit does not show the package from package.json that depends on the vulnerable package

  #7443 commented on Jun 10, 2025 • 0 new comments

• [BUG] `npm audit` not working properly with pre-releases / JFrog article "Invisible npm malware"

  #5949 commented on Jun 10, 2025 • 0 new comments

• [BUG] Colon in working directory break package resolution

  #6606 commented on Jun 12, 2025 • 0 new comments

• [BUG] Option engine-strict=true is not compatible with --omit=dev

  #6805 commented on Jun 16, 2025 • 0 new comments

• feat: adds support for oidc publish

  #8336 commented on Jun 17, 2025 • 0 new comments