Open jougene opened 3 years ago
Action: our team needs to repro
same here with a dependency on our corporate azure git server.
git clone "https://username:password@dev.azure.com/path"
works but
"dependencies": {
"Lib": "https://username:password@dev.azure.com/path"
doesn't...
Same here, all npm version from 7.16.0 are affected while 7.15.1 is working fine
Is there any update on this issue? @thomasleveil I tried with 7.15.1 and it's not working for me.
@cooldroid I'm still using 7.15.1 without any issue. I'm now afraid to upgrade
My temporary solution is change node(v16.9.1, npm:7.21.1) to node(v14).
I have the same issue, used a private gitlab repo as dependencies, works under node(v14) or below, but fails on node(v16.9.1, npm:7.21.1).
We're experiencing the same issue (for private GitLab repositories) when switching from Node 12 / npm 6 to Node 16 / npm 8. Weirdly this doesn't happen locally but in our CI environment only.
The log provided by @towry shows exactly what is also happening in our case.
My solution is to add access token.
By error log, TAR_ENTRY_INVALID checksum failure
is archive failure by checksum.
Usually checksum is used to check security.
You can make your gitlab repo's access token(only read_repository)
and npm install git+https://<token-name>:<token>@gitlab.com/Username/RepositoryName
I solved it. Hope everything goes well :) (Maybe yarn solves automatically by using our local key-chain)
So I've been trying to test this and here's what I've found.
I tested with npm v6.14.17 and I have no issues, but as soon as I use v7.0.0 and up, I get the TAR_ENTRY_INVALID checksum failure
issue. Adding the gitlab access token did not work.
I also tested by making a public Gitlab repo to rule out auth issues and I'm still not able to install the Gitlab repo. I tried with a public Github repo and it worked without issue.
I know an earlier comment mentioned they have an issue with an Azure repo, but I'm wondering if there's something different about the way it's able to install Github vs Gitlab (potentially others). I don't know enough yet to understand the deep technicals of that, but wanted to share my testing results and see if sparks an idea.
Also, not sure if this is relevant or helps, but I tried with the latest yarn and that works as well, so the issue seems isolated to npm v7 and up.
We're experiencing the same issue (for private GitLab repositories) when switching from Node 12 / npm 6 to Node 16 / npm 8. Weirdly this doesn't happen locally but in our CI environment only.
The log provided by @towry shows exactly what is also happening in our case.
Just to point out that this is still happening with NodeJS 16.16.0 and npm 8.11.0. We are force to migrate to yarn.
Is there an existing issue for this?
Current Behavior
When I try to install package from private gitlab repository via git+https with user and password, I get multiple
errors, and at the end of them -
TAR_BAD_ARCHIVE: Unrecognized archive format
error.If I enable verbose logging (
npm install --ddd
), I can see that somewhere in installation process I had been redirected on main gitlab page for Sign In -I already tried with node 16 and npm version 6.14.13, and this error did not occur
Expected Behavior
My private package, located in gitlab has been installed successefully
Steps To Reproduce
"private-package": "git+https://user:pass@gitlab.privateorg.com/project/package#commithash"
npm install
Environment