Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

npm-force-resolutions not working when installing a new package

Tags:

node.js

npm

dependencies

npm-install

npm-scripts

I'm using the scripts section of the package.json to force resolutions:

"preinstall": "npx npm-force-resolutions"

in the resolutions section, I have entered graceful-fs with a specified version:

"resolutions": {
  "graceful-fs": "^4.2.4",
},

When i run npm i everything is installed correctly, the set versions are taken in to account. But later on when I install an additional module, e.g. npm i random-package, my set versions are being thrown away and I endup with [email protected] and other low versions in some dependencies.

If I clear the node_modules folder and run npm i again, everything is alright again.

I also tried setting the resolution more specific, like

"resolutions": {
  "glob/**/graceful-fs": "^4.2.4",
},

but this doesn't help.

I also tried:

  • adding the module as dependency, devDependency or peerDependency
  • using a shrinkwrap and overriding it there

but no luck.

what am I missing?

like image 398
NthDegree Avatar asked Oct 30 '20 09:10

NthDegree

People also ask

What is NPX npm force resolutions?

"preinstall": "npx force-resolutions" npx force-resolutions does not run when no package-lock.json is detected, and allows the next command inline to be executed as normal.

How does npm force resolutions work?

This packages modifies package-lock. json to force the installation of specific version of a transitive dependency (dependency of dependency), similar to yarn's selective dependency resolutions, but without having to migrate to yarn.

How force npm install?

The -f or --force argument will force npm to fetch remote resources even if a local copy exists on disk. The -g or --global argument will cause npm to install the package globally rather than locally.

2 Answers

The best solution for me to automate this was modifying preinstall script as above:

"preinstall": "npm install --package-lock-only --ignore-scripts && npx npm-force-resolutions",

like image 123
Kamil Sobczyk Avatar answered Sep 19 '22 21:09

Kamil Sobczyk

Best way is to change the preinstall script to this:

"preinstall": "([ ! -f package-lock.json ] && npm install --package-lock-only --ignore-scripts --no-audit); npx npm-force-resolutions"

This will only run npm install to create your initial package-lock.json when it does not exist yet.
This is much faster than always running both (npm + npx).

like image 27
R. Oosterholt Avatar answered Sep 19 '22 21:09

R. Oosterholt
Sign in to Comment

Related questions

Node.js clustering vs multiple Docker containers
AWS Codebuild fails while downloading source. Message: Access Denied
Is there something like Lombok for TypeScript?
Dart Nodejs and Socketio
What is the difference between a node.js express route and a controller?
Nodejs with Sequelizejs using separate files per model
Is it possible to use PhantomJS and Node to dynamically generate PDFs from templates?
Node/NPM: Can one npm package expose more than one file?
List all global variables in Node.js
How to iterate through objects within array in Lodash
React-Native Packager Failure: Duplicate module name
What is the difference between HTTP streaming and server sent events?
run Grunt.js with Jenkins
What's going on with Meteor and Fibers/bindEnvironment()?
How to use JS require() without Node.js
Forever log and logrotate
ejs how to iterate object
Nodejs npm step downloads packages on every build in TeamCity
nodejs server error with selenium-webdriver
NPM install error Permission denied (publickey) for local repo

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!