Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[BUG] Npm mirrored the complete git repo when the version is a commit hash #1764

Closed
mmis1000 opened this issue Sep 4, 2020 · 2 comments
Closed

[BUG] Npm mirrored the complete git repo when the version is a commit hash #1764

mmis1000 opened this issue Sep 4, 2020 · 2 comments
Labels
Bug thing that needs fixing Release 6.x work is associated with a specific npm 6 release

Comments

@mmis1000
Copy link

mmis1000 commented Sep 4, 2020
edited
Loading

Current Behavior:

When there is a git dependency in the "dependencies" that point to specific hash.
NPM mirrored the complete repo.

"dependencies": {
    "xterm": "git+https://github.com/xtermjs/xterm.js.git#0320e6e22a67fe5d50b07df1d9f310684df2e561"
  }

Expected Behavior:

NPM only pull specific commit unless there is no server support of fetch by commit.

Since 2015,
It is possible to fetch a commit directly with sha1 hash with following sequence. (if the server enabled that function)

https://stackoverflow.com/questions/14872486/retrieve-specific-commit-from-a-remote-git-repository/30701724#30701724

git init
git remote add origin $REPO_URL
git fetch --depth=1 origin $COMMIT_HASH
git checkout $COMMIT_HASH

Steps To Reproduce:

  1. add git+https://github.com/xtermjs/xterm.js.git#0320e6e22a67fe5d50b07df1d9f310684df2e561 to package.json
  2. run npm i
  3. view git process spawned by npm with ps/top/htop

Environment:

  • OS: Mac
  • Node: v10.21.0
  • npm: 6.14.8
@mmis1000 mmis1000 added Bug thing that needs fixing Needs Triage needs review for next steps Release 6.x work is associated with a specific npm 6 release labels Sep 4, 2020
@darcyclarke darcyclarke removed the Needs Triage needs review for next steps label Feb 13, 2021
@darcyclarke
Copy link
Contributor

npm v6 is no longer in active development; We will continue to push security releases to v6 at our team's discretion as-per our Support Policy.

If your bug is preproducible on v7, please re-file this issue using our new issue template.

If your issue was a feature request, please consider opening a new RRFC or RFC. If your issue was a question or other idea that was not CLI-specific, consider opening a discussion on our feedback repo

Closing: This is an automated message.

1 similar comment
@darcyclarke
Copy link
Contributor

npm v6 is no longer in active development; We will continue to push security releases to v6 at our team's discretion as-per our Support Policy.

If your bug is preproducible on v7, please re-file this issue using our new issue template.

If your issue was a feature request, please consider opening a new RRFC or RFC. If your issue was a question or other idea that was not CLI-specific, consider opening a discussion on our feedback repo

Closing: This is an automated message.

@311821105 311821105 mentioned this issue Feb 2, 2024
Open
@Billywildhig Billywildhig mentioned this issue Feb 2, 2024
Open
@hojatA1 hojatA1 mentioned this issue Feb 3, 2024
Open
@EMWickd EMWickd mentioned this issue Feb 3, 2024
Open
@311821105 311821105 mentioned this issue May 7, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Bug thing that needs fixing Release 6.x work is associated with a specific npm 6 release
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@darcyclarke @mmis1000