-
Notifications
You must be signed in to change notification settings - Fork 154
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
greenkeeper pr's failing #329
Comments
Thanks for your bug report. Just rebuilding is not enough, sadly. See e.g. https://travis-ci.org/pouchdb/pouchdb-server/jobs/342637398 which I just triggered manually. I don't have time to look further into the issue myself, but if anyone has time to do so feel free to @mention me in resulting PRs so I can help with getting things merged. |
I checked the build log you mentioned and its reason for failing is the problem with greenkeeper updating the The quickfix is to checkout the greenkeeper branch, run However this problem will repeat itself on the next greenkeeper branch :-( This will ensure that as soon as greenkeeper creates a new branch and travis-ci runs the CI the package-lock.json will be pushed back to the branch. Unfortunately this does not fix any existing greenkeeper branches :-( |
Ok, that seems to fix the build for the sqlite3 branch. Others fail on |
Ok, two PRs left open. I looked into greenkeeper-lockfile, but there's a couple of problems
Probably all fixable, but currently too much work for me. Leaving this open in the hope someone will figure this out. Also so a release can happen at some point again, incorporating the updates. |
Thanks for putting in the effort ! With regards to the two remaining items:
A new release (even without the above 2 items) would be appreciated as this will resolve my initial question ;-) |
Alright. Pouchdb itself still seems to use the old memdown, so I'm going to follow it in that. Nice find on the nomnom fork, I'm running CI on that now. If it passes, I'll merge it. I'll make a release next. |
Hi,
I noticed that there are 10 PR's created by greenkeeper waiting for merge.
I looked at some of them and they seem to show red because Travis had no access to the most recent version of the dependency at the time of PR creation. I had the same issue in some of my repo's some time ago and just asking Travis to rebuild solved the issue for me.
The reason for creating the issue is that NPM audit keeps complaining about vulnerable dependencies of pouchdb-server :-(
Most notably:
Fixed by: #313
Fixed by: #315
Fixing these would be much appreciated.
Kind regards,
Hans
The text was updated successfully, but these errors were encountered: