Run npm ci to install the correct versions of all the node dependencies.
Are you sure you want to work on master and on 2.2-maintenance for now? I don’t remember if we discussed it at some point… but if you want/need react everywhere, master (2.3) makes sense, otherwise 2.2 is the better choice.
Did you change anything in the webpack config or package.json / package-lock.json? Because I used npm ci just this morning and had no problems building assets afterwards (on master).
Thanks… no changes to package.json, or to webpack conf. Still failing, but strangely it seems to be failing independently of which commit i am at (for core) – also on my local dev instance. I have been able to get the right sequence of commands to get build-assets to run without reporting a failure, but then there is a jquery error in the UI (login fails). Seems something in the env has changed, but do not see what it is as yet.
So, when the web is restarted, home page loads ok, then moving to login page gives this js error in the chrome console (and clicking on [Login with Indico] goes nowhere) :
(index):159 Uncaught ReferenceError: $ is not defined
at (index):159
at (index):184
(anonymous) @ (index):159
(anonymous) @ (index):184
[DOM] Input elements should have autocomplete attributes (suggested: “current-password”): (More info: https://goo.gl/9p2vKq) <input id="password" name="password" placeholder="Password" required type="password" value>
where line 159 in the login page is;
$(’.login-page’).on(‘click’, ‘.i-button.login-form-button’, function() {
Any ideas why jquery is not being loaded here?
And, for additional info (so, version corresponds to what package.json states):
$ npm install qtip2
npm WARN leaflet.markercluster@1.4.1 requires a peer of leaflet@~1.3.1 but none is installed. You must install peer dependencies yourself.
+ qtip2@3.0.3
updated 6 packages and audited 16154 packages in 21.264s
found 5 vulnerabilities (1 **low** , 3 moderate, 1 high)
run `npm audit fix` to fix them, or `npm audit` for details
Running audit fix seems to fix them… but, all this makes me wonder what possible other problems may be still unflagged?!
The security warnings are usually harmless - they are usually in code that is not used on the client side (e.g. build-time code, where XSS is obviously not a problem). In any case, we update all the dependencies in each major (2.1, 2.2, 2.3, etc.) update.
The peer dependency warning can be ignored as well.