+3
-1
lines changedFilter options
+3
-1
lines changed Original file line number Diff line number Diff line change
@@ -192,6 +192,7 @@ class VerifySignatures {
192 192 193 193
// If keys not found in Sigstore TUF repo, fallback to registry keys API
194 194
if (!keys) {
195 +
log.warn(`Fetching verification keys using TUF failed. Fetching directly from ${registry}.`)
195 196
keys = await npmFetch.json('/-/npm/v1/keys', {
196 197
...this.npm.flatOptions,
197 198
registry,
@@ -940,7 +940,7 @@ t.test('audit signatures', async t => {
940 940
})
941 941 942 942
t.test('with key fallback to legacy API', async t => {
943 -
const { npm, joinedOutput } = await loadMockNpm(t, {
943 +
const { logs, npm, joinedOutput } = await loadMockNpm(t, {
944 944
prefixDir: installWithValidSigs,
945 945
})
946 946
const registry = new MockRegistry({ tap: t, registry: npm.config.get('registry') })
@@ -952,6 +952,7 @@ t.test('audit signatures', async t => {
952 952 953 953
t.notOk(process.exitCode, 'should exit successfully')
954 954
t.match(joinedOutput(), /audited 1 package/)
955 +
t.match(logs.warn, ['Fetching verification keys using TUF failed. Fetching directly from https://registry.npmjs.org/.'])
955 956
t.matchSnapshot(joinedOutput())
956 957
})
957 958 You can’t perform that action at this time.
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4