New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[BUG] npm install is slow when POST-ing to npm/v1/security/advisories/bulk #7383
Closed
2 tasks done
Labels
Comments
fahminlb33
added
Bug
thing that needs fixing
Needs Triage
needs review for next steps
Release 10.x
labels
Apr 17, 2024
|
Full verbose output
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
Is there an existing issue for this?
This issue exists in the latest npm version
Current Behavior
If I start a new npm project without existing lockfile, installing even a single package takes a really long time. When I tried to use
--verbose
, I noticed an API call tohttps://registry.npmjs.org/-/npm/v1/security/advisories/bulk
takes about 15 seconds or even longer to finish.npm install
without lockfilenpm install
with lockfileExpected Behavior
The API call should not take too long or at least provide a clear status update to indicate the process. The current behavior just look like the install process is stuck, but it is not.
My temporary solution is to disable npm audit altogether to avoid this issue, but I know it is not a good thing to do.
Steps To Reproduce
npm init -y
npm install @biomejs/biome --verbose
Environment
The text was updated successfully, but these errors were encountered: