cdn.asset-packagist.org returns outdated version list

Hi, couple of days ago I stumbled upon a problem - I couldn't install package https://asset-packagist.org/package/npm-asset/swagger-ui  due to error, that it's de[endencies could not be found with required versions

```
Your requirements could not be resolved to an installable set of packages.
  Problem 1
    - Root composer.json requires npm-asset/swagger-ui 5.11.0 -> satisfiable by npm-asset/swagger-ui[5.11.0].
    - npm-asset/swagger-client[3.25.0, 3.25.1, 3.25.2, 3.25.3, 3.25.4] require npm-asset/swagger-api--apidom-reference >=0.90.0,<1.0.0 -> found npm-asset/swagger-api--apidom-reference[0.68.1, 0.69.0, 0.69.1, 0.69.2, 0.69.3, 0.70.0, 0.70.1, 0.70.2, 0.70.3, 0.70.4, 0.71.0, 0.71.1, 0.72.0, 0.73.0, 0.74.0, 0.74.1, 0.75.0, 0.76.0, 0.76.1, 0.76.2, 0.77.0, 0.78.0, 0.79.0, 0.80.0, 0.81.0, 0.82.0, 0.82.1, 0.82.2, 0.83.0, 0.84.0] but it does not match the constraint.
    - npm-asset/swagger-client 3.26.0 requires npm-asset/swagger-api--apidom-reference >=0.97.0,<1.0.0 -> found npm-asset/swagger-api--apidom-reference[0.68.1, 0.69.0, 0.69.1, 0.69.2, 0.69.3, 0.70.0, 0.70.1, 0.70.2, 0.70.3, 0.70.4, 0.71.0, 0.71.1, 0.72.0, 0.73.0, 0.74.0, 0.74.1, 0.75.0, 0.76.0, 0.76.1, 0.76.2, 0.77.0, 0.78.0, 0.79.0, 0.80.0, 0.81.0, 0.82.0, 0.82.1, 0.82.2, 0.83.0, 0.84.0] but it does not match the constraint.
    - npm-asset/swagger-client[3.26.1, 3.26.2, 3.26.3, 3.26.4] require npm-asset/swagger-api--apidom-reference >=0.98.0,<1.0.0 -> found npm-asset/swagger-api--apidom-reference[0.68.1, 0.69.0, 0.69.1, 0.69.2, 0.69.3, 0.70.0, 0.70.1, 0.70.2, 0.70.3, 0.70.4, 0.71.0, 0.71.1, 0.72.0, 0.73.0, 0.74.0, 0.74.1, 0.75.0, 0.76.0, 0.76.1, 0.76.2, 0.77.0, 0.78.0, 0.79.0, 0.80.0, 0.81.0, 0.82.0, 0.82.1, 0.82.2, 0.83.0, 0.84.0] but it does not match the constraint.
    - npm-asset/swagger-client[3.26.5, 3.26.6, 3.26.7, 3.26.8] require npm-asset/swagger-api--apidom-reference >=0.99.0,<1.0.0 -> found npm-asset/swagger-api--apidom-reference[0.68.1, 0.69.0, 0.69.1, 0.69.2, 0.69.3, 0.70.0, 0.70.1, 0.70.2, 0.70.3, 0.70.4, 0.71.0, 0.71.1, 0.72.0, 0.73.0, 0.74.0, 0.74.1, 0.75.0, 0.76.0, 0.76.1, 0.76.2, 0.77.0, 0.78.0, 0.79.0, 0.80.0, 0.81.0, 0.82.0, 0.82.1, 0.82.2, 0.83.0, 0.84.0] but it does not match the constraint.
    - npm-asset/swagger-client 3.27.0 requires npm-asset/swagger-api--apidom-reference >=0.99.1,<1.0.0 -> found npm-asset/swagger-api--apidom-reference[0.68.1, 0.69.0, 0.69.1, 0.69.2, 0.69.3, 0.70.0, 0.70.1, 0.70.2, 0.70.3, 0.70.4, 0.71.0, 0.71.1, 0.72.0, 0.73.0, 0.74.0, 0.74.1, 0.75.0, 0.76.0, 0.76.1, 0.76.2, 0.77.0, 0.78.0, 0.79.0, 0.80.0, 0.81.0, 0.82.0, 0.82.1, 0.82.2, 0.83.0, 0.84.0] but it does not match the constraint.
    - npm-asset/swagger-client[3.27.1, 3.27.2, 3.27.3, 3.27.4, 3.27.5, 3.27.6, 3.27.7, 3.27.8, 3.27.9, 3.28.0, 3.28.1, 3.28.2, 3.28.3] require npm-asset/traverse 0.6.8 -> found npm-asset/traverse[dev-master, 0.1.2, 0.1.3, 0.2.0, 0.2.1, 0.2.2, 0.2.3, 0.2.4, 0.2.5, 0.2.6, 0.2.x-dev, 0.3.0, 0.3.1, 0.3.2, 0.3.3, 0.3.4, 0.3.5, 0.3.6, 0.3.7, 0.3.8, 0.3.9, 0.3.x-dev, 0.4.0, 0.4.1, 0.4.2, 0.4.3, 0.4.4, 0.4.5, 0.4.6, 0.5.0, 0.5.1, 0.5.2, 0.6.0, 0.6.1, 0.6.2, 0.6.3, 0.6.4, 0.6.5, 0.6.6] but it does not match the constraint.
    - npm-asset/swagger-client 3.29.0 requires npm-asset/ramda-adjunct >=5.0.0,<6.0.0 -> found npm-asset/ramda-adjunct[dev-dependabot/npm_and_yarn/core-js-3.24.1, dev-dependabot/npm_and_yarn/jsdoc-3.6.11, dev-dependabot/npm_and_yarn/webpack-5.74.0, dev-dependabot/npm_and_yarn/eslint-8.21.0, dev-dependabot/npm_and_yarn/eslint-plugin-mocha-10.1.0, dev-dependabot/npm_and_yarn/babel/cli-7.18.10, dev-dependabot/npm_and_yarn/babel/core-7.18.10, dev-dependabot/npm_and_yarn/babel/preset-env-7.18.10, dev-master, dev-gh-pages, v0.0.1, 0.1.0, 0.2.0, 0.3.0, 0.4.0, 0.5.0, 0.5.1, 0.6.0, 0.7.0, 1.0.0, 1.1.0, 1.2.0, v1.3.0, 1.3.1, 1.3.2, 1.4.0, 1.5.0, 1.6.0, 1.7.0, 1.8.0, 1.8.1, 1.9.0, 1.10.0, 1.10.1, 1.10.2, 1.11.0, 1.12.0, 1.13.0, 1.14.0, 1.15.0, 1.16.0, 1.17.0, 1.18.0, 1.19.0, 2.0.0, 2.1.0, 2.2.0, 2.3.0, 2.4.0, 2.4.1, 2.5.0, 2.6.0, 2.7.0, 2.8.0, 2.9.0, 2.10.0, 2.11.0, 2.12.0, 2.13.0, 2.14.0, 2.15.0, 2.16.0, 2.16.1, 2.17.0, 2.18.0, 2.19.0, 2.19.1, 2.19.2, 2.19.3, 2.20.0, 2.21.0, 2.22.0, 2.22.1, 2.23.0, 2.24.0, 2.25.0, 2.26.0, 2.27.0, 2.28.0, 2.29.0, 2.30.0, 2.31.0, 2.31.1, 2.32.0, 2.33.0, 2.34.0, 2.35.0, 2.36.0, 2.x-dev, 3.0.0, 3.1.0, 3.2.0] but it does not match the constraint.
    - npm-asset/swagger-client[3.29.1, 3.29.2, 3.29.3, 3.29.4, 3.30.0, 3.30.1, 3.31.0, 3.32.0, 3.32.1, 3.32.2, 3.32.3, 3.32.4, 3.33.0, 3.33.1, 3.33.2, 3.34.0, 3.34.1, 3.34.2, 3.34.3, 3.34.4, 3.35.0, 3.35.1, 3.35.2, 3.35.3, 3.35.4, 3.35.5, 3.35.6] require npm-asset/neotraverse 0.6.18 -> found npm-asset/neotraverse[0.0.1, 0.0.2, 0.0.3, 0.0.5, 0.6.8, 0.6.8-patch.1, 0.6.9, 0.6.9-patch.0, 0.6.9-patch.1, 0.6.10, 0.6.11, 0.6.12, 0.6.13, 0.6.14, 0.6.15] but it does not match the constraint.
    - npm-asset/swagger-client 3.35.7 requires npm-asset/swagger-api--apidom-json-pointer >=1.0.0-beta.50,<1.0.0-RC.0 -> found npm-asset/swagger-api--apidom-json-pointer[0.68.1, 0.69.0, 0.69.1, 0.69.2, 0.69.3, 0.70.0, 0.70.1, 0.71.0, 0.72.0, 0.73.0, 0.74.0, 0.74.1, 0.75.0, 0.76.0, 0.76.1, 0.76.2, 0.77.0, 0.78.0, 0.79.0, 0.80.0, 0.81.0, 0.82.0, 0.82.1, 0.82.2, 0.83.0, 0.84.0] but it does not match the constraint.
    - npm-asset/swagger-ui 5.11.0 requires npm-asset/swagger-client >=3.25.0,<4.0.0 -> satisfiable by npm-asset/swagger-client[3.25.0, 3.25.1, 3.25.2, 3.25.3, 3.25.4, 3.26.0, 3.26.1, 3.26.2, 3.26.3, 3.26.4, 3.26.5, 3.26.6, 3.26.7, 3.26.8, 3.27.0, 3.27.1, 3.27.2, 3.27.3, 3.27.4, 3.27.5, 3.27.6, 3.27.7, 3.27.8, 3.27.9, 3.28.0, 3.28.1, 3.28.2, 3.28.3, 3.29.0, 3.29.1, 3.29.2, 3.29.3, 3.29.4, 3.30.0, 3.30.1, 3.31.0, 3.32.0, 3.32.1, 3.32.2, 3.32.3, 3.32.4, 3.33.0, 3.33.1, 3.33.2, 3.34.0, 3.34.1, 3.34.2, 3.34.3, 3.34.4, 3.35.0, 3.35.1, 3.35.2, 3.35.3, 3.35.4, 3.35.5, 3.35.6, 3.35.7].
```

After research I found out that cdn.asset-packagist.org returns incomplete versions list. For example, for package npm-asset/ramda-adjunct will to https://cdn.asset-packagist.org/p/npm-asset/ramda-adjunct/09cda3c18dd641015cb562dd3358e5cc061dddf4263dae2d2dbacc9e10179165.json returns list where last version is **3.2.0**, but at the same time real last version is **5.1.0**, as can be ssen on the Asset Packagist website  https://asset-packagist.org/package/npm-asset/ramda-adjunct

I attach verbose log for `composer show -vvv -a npm-asset/ramda-adjunct` and currently returned JSON from cdn.asset-packagist.org

[composer_ranma_adjust.log](https://github.com/user-attachments/files/22934641/composer_ranma_adjust.log)

[09cda3c18dd641015cb562dd3358e5cc061dddf4263dae2d2dbacc9e10179165.json](https://github.com/user-attachments/files/22934525/09cda3c18dd641015cb562dd3358e5cc061dddf4263dae2d2dbacc9e10179165.json)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

cdn.asset-packagist.org returns outdated version list #179

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

cdn.asset-packagist.org returns outdated version list #179

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions