GordonSmith
commented
5 years ago Quick me too.
Closed vasturiano closed 5 years ago
GordonSmith
commented
5 years ago Quick me too.
j-f1
commented
5 years ago Seems like it might be fixed?
davidwhthomas
commented
5 years ago Same issue here:
curl -I https://unpkg.com/draggabilly@2.2.0/dist/draggabilly.pkgd.js
HTTP/2 500
date: Thu, 27 Jun 2019 01:59:24 GMT
content-type: text/html; charset=UTF-8
content-length: 323
x-cloud-trace-context: 9f38bd082b35a564dbcf98f3741a6a32
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
server: cloudflare
Update: unfortunately this was causing some problematic errors in production for us. As no quick resolution, we've switched to using a different CDN.
therefromhere
commented
5 years ago Possibly related, redirect to latest version took 10 seconds:
time curl -I 'https://unpkg.com/swagger-ui-dist@3/swagger-ui-bundle.js'
HTTP/2 302
date: Thu, 27 Jun 2019 03:22:16 GMT
content-type: text/plain; charset=utf-8
content-length: 66
access-control-allow-origin: *
cache-control: public, s-maxage=14400, max-age=3600
location: /swagger-ui-dist@3.22.3/swagger-ui-bundle.js
vary: Accept
x-cloud-trace-context: 467eb7000b805ebdcab5bae142f7a46e
cf-cache-status: STALE
age: 20673
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
server: cloudflare
cf-ray: 4ed44b67ba2da433-AKL
real 0m10.833s
user 0m0.050s
sys 0m0.004sLoading the specific version works instantly though.
or-else
commented
5 years ago Still broken:
curl -I https://unpkg.com/prop-types@15/prop-types.js
HTTP/2 500
date: Thu, 27 Jun 2019 03:43:52 GMT
content-type: text/html; charset=UTF-8
content-length: 323
x-cloud-trace-context: dba80e42cf1a21cd355630fad25753c6
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
server: cloudflare
cf-ray: 4ed46b1158ef7866-LAX
mjackson
commented
5 years ago Thanks for the heads up. No idea what the problem is yet, but I'm looking into it. There has been a huge spike (4x the normal) in request volume over the past 24 hours, which may be to blame. I've added a few more servers but it probably won't be enough. I'll keep investigating. In the meantime, any other details you can provide will help. Thanks!
zivkaziv
commented
5 years ago 
nickjanssen
commented
5 years ago @mjackson are you using GKE? You should upgrade to the latest version ASAP as 3 vulnerabilities were discovered allowing DoS attacks. Check your mail for GCP announcements which have more information. I don't know of course if there's a connection, but a 4x traffic increase feels off.
Stalinko
commented
5 years ago Same issue here. https://unpkg.com/driver.js/dist/driver.min.js loads 10s and then shows 500 Server Error
MikeTatsky
commented
5 years ago Same issue https://unpkg.com/fancygrid@1.7.54/client/fancy.min.css?_v=1754
Error: Server Error
The server encountered an error and could not complete your request.
Please try again in 30 seconds.
huqiliang
commented
5 years ago 
pierrealixt
commented
5 years ago 
sachingupta
commented
5 years ago We are also having same issue https://unpkg.com/@microsoft/teams-js@1.5.0-beta.5/
FYI: @ydogandjiev
nickjanssen
commented
5 years ago Feel free to use our temporary mirror: https://unpkg.laska.io (kindly provided by Laska)
mjackson
commented
5 years ago Things should be back to normal for now. Not sure if this was a DoS attack or not. I'll be investigating today.
@nickjanssen Thank you for putting up the mirror :) Very helpful! We are using GAE. Here's what our request activity looks like over the past 24 hours:
That large spike of 50x traffic looks suspiciously like a DoS attack to me...
GordonSmith
commented
5 years ago (or a recursive fetch? Is there a pathogenic circular reference case I wonder?)
mjackson
commented
5 years ago @GordonSmith That's a possibility. I wonder if there's a way for GAE to setup auto rate limiting from a given IP address. Or maybe Cloudflare can do it.
lddubeau
commented
5 years ago The problem came back or it was not completely resolved. Among the URLs that were presented as problematic earlier in this thread, this works:
This does not work:
https://unpkg.com/@microsoft/teams-js@1.5.0-beta.5/
My own attempt that did not work was with:
https://unpkg.com/jquery@latest
I discovered that if I drop the @latest tag, then the query does work. The query works just fine on the mirror at https://unpkg.laska.io/ with or without @latest.
cekvenich
commented
5 years ago This is still happening for new packages for me. Works on Laska.
jaydenseric
commented
5 years ago 
Neaox
commented
5 years ago Happens for me too: https://unpkg.com/react/
divyeshsachan
commented
5 years ago Same issue on https://unpkg.com/leaflet/dist/
GuichiZhao
commented
5 years ago mjackson
commented
5 years ago Please everyone, stop posting "me too" comments. They don't help.
sowmiyaseshadriii
commented
5 years ago @mjackson can you please help, the issue again happens.
mjackson
commented
5 years ago Looks like this was just an outage, not sure what the root cause was. Closing for now.
baryla
commented
5 years ago Still having these issues. In my case, the issues are about CORS? If it helps, I'm on Chrome 75, MacOS Mojave.
On a different computer with the same version of Chrome but MacOS High Sierra, it works fine.
Currently experiencing 500 errors on various modules:
For example: https://unpkg.com/chroma https://unpkg.com/topojson https://unpkg.com/d3-scale https://unpkg.com/d3-geo https://unpkg.com/polished ...
Any idea of what the issue may be?