Saravana Achu Mac
255bb070a3
Partial fix for the lockfile drift caught in the audit. The previous
session ran `npm install` inside web/ as a workaround for a Vite vendor-
resolution issue, which left three lockfiles in the wrong places:
- web/package-lock.json (npm artifact in a pnpm monorepo)
- web/pnpm-lock.yaml (per-package pnpm lockfile, also wrong)
- backend/pnpm-lock.yaml (same issue)
This commit:
- Deletes those three files from the working tree.
- Adds .gitignore entries so they can't be re-committed by accident.
- Also gitignores .claude/ (Claude Code session metadata).
What's still missing: the root pnpm-lock.yaml needs `react-router-dom`,
`@monaco-editor/react`, `@dnd-kit/{core,sortable,utilities}` added to
its resolution graph. That requires `pnpm install -r --no-frozen-lockfile`
from the repo root on a workstation with GITEA_NPM_TOKEN exported (the
mobile workspace pulls @bytelyst/* private packages from the org's
private registry; this session has no token so the install errors out
on the mobile resolve). It's a one-line follow-up — tracked in
AUDIT_REDESIGN.md item E2.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
32 lines
545 B
Plaintext
32 lines
545 B
Plaintext
node_modules
|
|
.pnpm-store
|
|
dist
|
|
build
|
|
coverage
|
|
.turbo
|
|
.next
|
|
.expo
|
|
.expo-shared
|
|
android
|
|
ios
|
|
web-build
|
|
*.log
|
|
.DS_Store
|
|
.env
|
|
.env.local
|
|
.env.*.local
|
|
backend/bot_state.json
|
|
|
|
# Lockfile hygiene: this is a pnpm workspace — only the root pnpm-lock.yaml
|
|
# is committed. npm-style or per-package pnpm lockfiles inside subpackages
|
|
# get out of sync with the root and break CI.
|
|
backend/pnpm-lock.yaml
|
|
backend/package-lock.json
|
|
web/pnpm-lock.yaml
|
|
web/package-lock.json
|
|
mobile/pnpm-lock.yaml
|
|
mobile/package-lock.json
|
|
|
|
# Claude Code session metadata
|
|
.claude/
|