[BUG]fossa cannot analyze the new format of `pnpm-lock.yaml` #1307

LoisHuang2022 · 2023-10-19T06:58:09Z

Describe the bug
Fossa doesn't seem to be able to analyze the new format of 'pnpm-lock.yaml'.

To Reproduce
Steps to reproduce the behavior:
pnpm-lock.yaml：

lockfileVersion: '6.0'

settings:
  autoInstallPeers: true
  excludeLinksFromLockfile: false

dependencies:
  '@emotion/react':
    specifier: ^11.10.6
    version: 11.11.1(@types/react@18.2.21)(react@18.2.0)
......

Run fossa analyze
See error

An issue occurred

  >>> Relevant errors

    Error

      Error parsing file: /xxxxxx/pnpm-lock.yaml.

          Aeson exception:
          Error in $.dependencies['@emotion/react']: parsing Text failed, expected String, but encountered Object

but if use this format

lockfileVersion: 5.4
specifiers:
  '@emotion/react': ^11.10.6
......
dependencies:
  '@emotion/react': 11.11.1

fossa analyze runs successfully

Additional context
fossa-cli version 3.8.18

The text was updated successfully, but these errors were encountered:

github-actions · 2023-10-19T06:58:24Z

Thank you @LoisHuang2022 for creating this issue. If this is in regards to a defect, product question or feature request: you should use our support portal at https://support.fossa.com to file a request, as you would receive more immediate support.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[BUG]fossa cannot analyze the new format of `pnpm-lock.yaml` #1307

[BUG]fossa cannot analyze the new format of `pnpm-lock.yaml` #1307

LoisHuang2022 commented Oct 19, 2023

github-actions bot commented Oct 19, 2023

[BUG]fossa cannot analyze the new format of pnpm-lock.yaml #1307

[BUG]fossa cannot analyze the new format of pnpm-lock.yaml #1307

Comments

LoisHuang2022 commented Oct 19, 2023

github-actions bot commented Oct 19, 2023

[BUG]fossa cannot analyze the new format of `pnpm-lock.yaml` #1307

[BUG]fossa cannot analyze the new format of `pnpm-lock.yaml` #1307