Closed wan54 closed 4 years ago
We have an issue related to this so you should definitely follow-up on the conversation there:
Thank you
@wan54 in your case, the issue is that you expect HTTPS to be used (you specified -s
in the arguments) but when you use a scheme then the HTTPS flag is redundant.
This should work for you:
npx lockfile-lint -p package-lock.json -t npm -a npm gitlab.com '' -o "https:" "github:"
I tried that also. Is that right though to use '' in the allowed hosts?
@wan54 wanted to let you know that this is now fixed in latest versions of lockfile-lint, try this:
npx lockfile-lint -p package-lock.json -t npm -a npm github.com -o "https:" "github:"
let me know if you have any questions or further issues but I'm confident this should solve the usage problem for you.
Is there plan to support this type of package?
npx lockfile-lint -p package-lock.json -t npm -s -a npm gitlab.com '' -o "https:" "github:"
detected invalid protocol for package: lottie-api@github:bodymovin/lottie-api#793fcfc4d8f2da1b868977c1a2c36eaf696e28c0 expected: https: actual: github: