Error: Command failed with certain npm packages

etnetera / owasp-dependency-check

MIT License

6 stars 12 forks source link

Error: Command failed with certain npm packages #11

Open brudijoe opened 1 year ago

brudijoe commented 1 year ago

Hello, our team is running into issues when we run the check: "owasp": "owasp-dependency-check --out=./dependency-check-reports --project=\"[projektname]\" --data=/tmp/dependency-check-data --format=HTML --format=HTML --scan=package-lock.json"

The problem happens with the npm packages: jest, webpack, webpack-dev-server

We used the recent version "owasp-dependency-check": "^0.0.21" and an older one (0.0.18).

centi commented 1 year ago

Could you provide additional information?

What version of Node/NPM are you using?
If possible, attach your package-lock.json

I tried the exact command you provided on a simple project (linux) and it works.

centi commented 1 year ago

And what version of java do you have?

brudijoe commented 1 year ago

Thank you for anwsering, the problem is likely the node-version. When running the check with node-version: 14.16.1, we don't have any problems, but if we use 16.13.1 then we get the Child.process.exithandler error.

I have included a package-lock.json from a small sample project.

package-lock.zip

As for java, we use: openjdk version "1.8.0_345" OpenJDK Runtime Environment (Temurin)(build 1.8.0_345-b01) OpenJDK 64-Bit Server VM (Temurin)(build 25.345-b01, mixed mode)