yarnpkg/yarn

Private npm registry authentication issue on yarn.lock and package.json semver mismatch

Open

#5,256 opened on Jan 20, 2018

View on GitHub
 (3 comments) (0 reactions) (1 assignee)JavaScript (2,731 forks)batch import
good first issuehelp wantedtriaged

Repository metrics

Stars
 (41,514 stars)
PR merge metrics
 (No merged PRs in 30d)

Description

Do you want to request a feature or report a bug? BUG

What is the current behavior? Yarn does not authenticate with the private npm registry when the package.json and yarn.lock have a semver mismatch for a spesific package.

For example: yarn add css-hot-loader edit package.json and remove the carrot (^) from the version yarn install Result: Rejected 401, Unauthenticated

OS: Linux, Ubuntu (Heroku)

Contributor guide