yarn.lock file isn't required by runtime (!2024) · 合并请求 · kubesphere / console

Calvin Yu请求将github/fork/RolandMa1986/fix-ignore-yarn合并到master 6月 25, 2021

Created by: RolandMa1986

Signed-off-by: Roland.Ma rolandma@yunify.com

What type of PR is this? /kind cleanup

What this PR does / why we need it: Remove yarn.lock file from the docker image. There are some false positive CVE issues were reported by the scaner, which try to detect issues with the yarn.lock file. But some of those packages were not compiled into the release.

Which issue(s) this PR fixes:

Fixes #

yarn.lock file isn't required by runtime

合并请求报告