Skip to content

Issue with building node projects #207

Closed
#208
Closed
Issue with building node projects#207
#208
@nickpapciak

Description

@nickpapciak
nickpapciak
opened on Aug 1, 2025

Trying to build an app that uses node fails because of bad keys. You have to set MISE_NODE_VERIFY=false to get it to work

 => ERROR install mise packages: node                                                                                  2.7s
------
 > install mise packages: node:
0.121 mise trusted /app
0.409 mise node@22.18.0    install
0.412 mise node@22.18.0    download node-v22.18.0-linux-x64.tar.gz
2.667 gpg: Signature made Thu Jul 31 21:47:23 2025 UTC
2.667 gpg:                using EDDSA key 5BE8A3F6C8A5C01D106C0AD820B1A390B168D356
2.668 gpg: Can't check signature: No public key
2.669 mise ERROR gpg failed
2.669 gpg: Signature made Thu Jul 31 21:47:23 2025 UTC
2.669 gpg:                using EDDSA key 5BE8A3F6C8A5C01D106C0AD820B1A390B168D356
2.669 gpg: Can't check signature: No public key
2.673 mise ERROR failed to install core:node@22.18.0
2.673 mise ERROR gpg exited with non-zero status: exit code 2
2.673 mise ERROR Run with --verbose or MISE_VERBOSE=1 for more information
------
ERROR: failed to solve: process "sh -c mise trust -a && mise install" did not complete successfully: exit code: 1

and

➜ mise install --verbose
DEBUG ARGS: mise install --verbose
DEBUG config: ~/Downloads/df_demo/mise.toml
DEBUG config: ~/.config/mise/config.toml
DEBUG install_some_versions: node@22.18.0
INFO  node@22.18.0    install
INFO  node@22.18.0    download node-v22.18.0-darwin-arm64.tar.gz
DEBUG GET Downloading https://nodejs.org/dist/v22.18.0/node-v22.18.0-darwin-arm64.tar.gz to ~/.local/share/mise/downloads/node/22.18.0/node-v22.18.0-darwin-arm64.tar.gz
DEBUG GET https://nodejs.org/dist/v22.18.0/node-v22.18.0-darwin-arm64.tar.gz
DEBUG starting new connection: https://nodejs.org/
DEBUG GET https://nodejs.org/dist/v22.18.0/node-v22.18.0-darwin-arm64.tar.gz 200 OK
DEBUG GET Downloading https://nodejs.org/dist/v22.18.0/SHASUMS256.txt to ~/.local/share/mise/downloads/node/22.18.0/SHASUMS256.txt
DEBUG GET https://nodejs.org/dist/v22.18.0/SHASUMS256.txt
DEBUG GET https://nodejs.org/dist/v22.18.0/SHASUMS256.txt 200 OK
DEBUG GET Downloading https://nodejs.org/dist/v22.18.0/SHASUMS256.txt.sig to ~/.local/share/mise/downloads/node/22.18.0/SHASUMS256.asc
DEBUG GET https://nodejs.org/dist/v22.18.0/SHASUMS256.txt.sig
DEBUG GET https://nodejs.org/dist/v22.18.0/SHASUMS256.txt.sig 200 OK
DEBUG $ gpg --quiet --import
DEBUG $ gpg --quiet --trust-model always --verify /Users/nickpapciak/.local/share/mise/downloads/node/22.18.0/SHASUMS256.asc /Users/nickpapciak/.local/share/mise/downloads/node/22.18.0/SHASUMS256.txt
gpg: Signature made Thu Jul 31 14:47:23 2025 PDT
gpg:                using EDDSA key 5BE8A3F6C8A5C01D106C0AD820B1A390B168D356
gpg: Can't check signature: No public key
ERROR gpg failed
Error:
   0: failed to install core:node@22.18.0
   1: gpg exited with non-zero status: exit code 2

Location:
   src/cmd.rs:479

Version:
   2025.7.0 macos-arm64 (2025-07-01)

Backtrace omitted. Run with RUST_BACKTRACE=1 environment variable to display it.
Run with RUST_BACKTRACE=full to include source snippets.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions