Closed cd-work closed 1 month ago
This fixes an issue where the lockfile parser for JavaScript's package-lock.json was too restrictive and would fail parsing valid lockfiles.
package-lock.json
As a solution all packages without explicit resolved field are now ignored, since these are the only packages we're capable of analyzing anyway.
resolved
This fixes an issue where the lockfile parser for JavaScript's
package-lock.jsonwas too restrictive and would fail parsing valid lockfiles.As a solution all packages without explicit
resolvedfield are now ignored, since these are the only packages we're capable of analyzing anyway.