Replies: 10 comments
-
Honestly, why is this still a thing? I want to be able to Who thought this would be a good idea? |
Beta Was this translation helpful? Give feedback.
-
Indeed, this is quite frustrating. We're using internal packages to our organisation and just added one of the packages as a dependency to one of our repos. Now every new |
Beta Was this translation helpful? Give feedback.
-
I agree, this is a catastrophe from a developer perspective. And does not even really make sense, because, if we have a public repo, we can install without any auth using the repo url directly anyway, which is just a little unusual to see in a package.json. The package should support the same level of comfort as the repo it is based upon. |
Beta Was this translation helpful? Give feedback.
-
Even I am not able to install package with .npmrc, any sueggestions ?? I have github packages in my company private github account and I want to install those packages in another project using dependency in package.json and npm. Below are the steps I am following. created .npmrc file added dependecy in package.json created PAT for organization npm install in github action name: Install Dependencies npm ERR! code E404 any suggestions or solutions are appreciated. |
Beta Was this translation helpful? Give feedback.
-
It's 2024 and apparently you still cannot install public packages from the GitHub npm registry without being authenticated. Can't even express the frustration. As a workaround, I'm installing the actual Github repo as opposed to the package. This is how: Before
After
Hope it helps someone 🎉 |
Beta Was this translation helpful? Give feedback.
-
Yup, this is such a silly thing. Isn't npm part of github now? Or at least also under Microsoft? Just make it part of the UI somehow. Or, better yet, flip the switch that allows us to install packages without tokens. |
Beta Was this translation helpful? Give feedback.
-
Absolutely bonkers that someone thinks this is a good way for this to work. Makes Github Packages completely unsuable for JS. As a workaround we're having to use GitPkg. |
Beta Was this translation helpful? Give feedback.
-
Just ran into this today myself. Certainly just an environment NPM_AUTH_TOKEN or other github_token should be supported in a better or more environment based way... |
Beta Was this translation helpful? Give feedback.
-
I'm still wondering why a classic token is still the only way to do this, I wouldn't care as much if I could use a Github App token like I do with Golang packages.
I thought classic tokens weren't a good idea any more? I don't want a user account and PAT purely for NPM packages in an org wide context. |
Beta Was this translation helpful? Give feedback.
-
I totally dislike the requirement to have
~/.npmrc
file with//npm.pkg.github.com/:_authToken=TOKEN
content, whereTOKEN
is a token with the read:packages permission, in order to install a package from GitHub Packages.It makes the installing such packages much difficult, more over it requires to have a GitHub account.
It's absolutely not user-friendly.
I want just to clone a project and install the deps with
npm ci
/npm i
.I don't want to go GitHub account settings, create a token, and put it in
~/.npmrc
.Why do I need an account if I can just download the package from the web site without even having an account?
Installing packages from NPM/PyPI/Maven/NuGet and other popular places does not require to have an account.
I just type a command and packages are installed. But not packages from GHP.
The having of the local
.npmrc
(with, for example,@alttiri:registry=https://npm.pkg.github.com
) to define where the packages are hosted in the project folder is OK, since it is created once by the repo owner.But requirement to have
.npmrc
with the token (only just for package reading) is not fine.Beta Was this translation helpful? Give feedback.
All reactions