Github package registry - Private package not found

waqasibrahim · July 7, 2020, 3:38pm

I have a private repository and I was able to publish a private package successfully. But when I try to install the package, It gives a 404 error. I cannot download the package from the package landing page and the assets links to https://notfound.pkg.github.com/.

I changed the visibility to public and the installation and assets’ link worked fine.

typicaljon · May 23, 2020, 6:05am

I’m having this exact same problem.

mxxk · May 26, 2020, 5:12pm

Thanks for creating a dedicated issue for this, @waqasibrahim (the previous issue wasn’t getting any attention since it’s marked fixed for an unrelated reason).

Here are the steps to reproduce:

Create a new private repository. Per npm package naming requirements, make sure the repo owner and name (i.e. @repo-owner/repo-name) are both lowercase.
Create a personal access token with the following scopes:

write:packages
read:packages
repo

Authenticate against the GitHub NPM registry using your GitHub username and personal access token:

$ npm login --scope @repo-owner --registry https://npm.pkg.github.com
Use npm init to create a new npm package called @repo-owner/repo-name.
Publish a new (and only) version of the NPM package with npm publish.
Check that the package is visible with npm view:

$ npm view @repo-owner/repo-name
@repo-owner/repo-name@0.0.1 | ISC | deps: 0 | versions: 1
…

Now, try to install the package:

$ npm install -g @repo-owner/repo-name
npm ERR! code E404
npm ERR! 404 Not Found - GET https://npm.pkg.github.com/download/@repo-owner/repo-name/0.0.1/8d84896fe3f54d8ce56962cf1f7fc760e56efe52f2d471cf703103c476d3c9a9

Check that though the GitHub UI is showing the new version, its tarball links to https://notfound.pkg.github.com/:

wpitallo · May 23, 2020, 6:05am

I am also getting this.

freshly-pressed-trousers · May 23, 2020, 6:05am

Same isssue here, which is a shame as when github packages was released it looked like a perfect solution for consolidating a lot of disparate repository guff I’ve had to deal with.

scottwestover · May 23, 2020, 6:05am

I am having the same issue.

alappin · May 23, 2020, 6:05am

I can confirm that the problem has been fixed and might have been related to some “data transfer” billing issues at github. Support eventually cameback to me after 2 weeks and gave me the following response.

Hey there *NAME RETRACTED*,

Thanks for your patience here, we believe there may have been some issues with rounding the data.

Can I ask you to:

Check, and view your usage over at: https://help.github.com/en/github/setting-up-and-managing-billing-and-payments-on-github/viewing-your-github-packages-usage
Try making this installation request again.

Usage should be more accurately reflected, and you should be able to start using the package registry once more.

Thanks
*NAME RETRACTED*

anthonator · May 23, 2020, 6:05am

Is a personal access token still required?

anthonator · May 23, 2020, 6:05am

Yes, it is. secrets.GITHUB_TOKEN does not work.

anthonator · May 23, 2020, 6:05am

We’ve also been getting charged for data transfer out when using personal access tokens to get a docker image hosted on the GitHub Package Registry from GitHub Actions. This is supposed to be free.

cyrus-za · May 23, 2020, 6:05am

I am still experiencing this issue, but only when installing with yarn. Not when installing with npm. So strange!