Package: devscripts
Version: 2.20.5
severity: important
For node-yarnpkg, package.json has
"normalize-url": "^2.0.0",
But without forcing version 2 like
https://registry.npmjs.org/normalize-url/-/normalize-url-(2[\d\.]+)@ARCHIVE_EXT@
checksum
it downloads the latest version 5.3.0 negating the usefulness of
ctype=nodejs.
open ended versions like,
https://registry.npmjs.org/normalize-url/-/normalize-url-([\d\.]+)@ARCHIVE_EXT@
checksum
does not work. So we have to always select the versions manually.
