jfrog audit scan command fails while finding existing packages

[jashan05]

Hello Team,

We are using jfrog audit scan using cli. It fails while running scan for a package which is a dependency of a dependency and is available in Artifactory. It seems it is not able to find that package. Could you please guide me on this.

Details:

16:53:38 [Info] Running SCA scan for yarn vulnerable dependencies in /azp/_work/1/s/CheckedOutSource directory...
16:53:38 [Info] Calculating Yarn dependencies...
16:53:39 [Warn] An error occurred while collecting dependencies info:
{"type":"warning","data":"Lockfile has incorrect entry for \"axios@^0.26.1\". Ignoring it."}
{"type":"error","data":"Couldn't find package \"axios@^0.26.1\" required by \"@nn-sls/core@^2.2.2\" on the \"npm\" registry."}

16:53:39 [Warn] An error was thrown while collecting dependencies info: exit status 1
Command output:
{"type":"info","data":"Visit https://yarnpkg.com/en/docs/cli/list for documentation about this command."}

Package in our Artifactory:

[EyalDelarea]

Hey @jashan05 ,

Could you please share some additional details that will help us investigate the issue?

• Which version of Yarn are you using?
• Share debug level logs (You can do that by exporting ENV var JFROG_CLI_LOG_LEVEL=DEBUG)
• Share the package.json file if you can, or any other details you can to help us reproduce this problem.