If a Lerna.json file is identified, then Lerna’s npmClient will determine if to run npm or yarn resolution.
The pnpm-lock.yaml file will be resolved if it is the only lock file identified next to the package.json file.
When the scan runs, though, the UA seems to prioritise lerna.json over pnpm-lock.yaml. Thing is, the UA doesn't seem to support pnpm as Lerna's npmClient because it keeps complaining that package-lock.json file is not there when resolving the dependencies. My expectation is either:
pnpm-lock.yaml takes precedence over lerna.json, or
pnpm is supported as Lerna's npmClient when lerna.json is used.
Hi, here's my setup:
pnpm-lock.yamlfile sits side-by-side withlerna.jsonnpmClientinmy lerna.jsonis set topnpmnpm.resolveDependencies=trueandnpm.resolveLockFile=truein mywss-unified-agent.configAccording to https://docs.mend.io/bundle/unified_agent/page/unified_agent_configuration_parameters.html#JavaScript:
When the scan runs, though, the UA seems to prioritise
lerna.jsonoverpnpm-lock.yaml. Thing is, the UA doesn't seem to support pnpm as Lerna's npmClient because it keeps complaining thatpackage-lock.jsonfile is not there when resolving the dependencies. My expectation is either:pnpm-lock.yamltakes precedence overlerna.json, orlerna.jsonis used.Thoughts? Thank you.