Loading
search-img
Title
Code Insight Remote Docker Scans Might Take a Very Long Time (Up to Several Days) Due to npm Registry Timeouts

When running Code Insight remote Docker scans, you might notice that a scan takes a very long time, sometimes up to several days to complete. The agent log may show repeated connection timeout warnings to the npm registry (registry.npmjs.org), especially for Node.js packages.

This issue commonly occurs when a scan profile is configured to resolve transitive dependencies for Docker images that already include all Node.js dependencies. In these cases, Code Insight makes unnecessary outbound calls to the npm registry, which significantly increases scan duration.

This article explains why this behavior occurs and how you can resolve it by adjusting the dependency settings in your scan profile.

Solution

Step 1: Identify npm Registry Timeout Symptoms

Check the Code Insight agent log (agent.log) for repeated timeout warnings similar to the following:

WARN c.f.c.util.HttpUtils Http URL connection time out: https://registry.npmjs.org/@jupyterlab%2fapplication

If you see many timeout entries for npm packages, Code Insight is attempting to resolve transitive Node.js dependencies through the npm registry.

Step 2: Confirm That "node_modules" Directory Exists in the Image

Verify whether the Docker image includes the node_modules directory. This is common when:

  • Node.js dependencies are bundled with the application.
  • Dependencies are installed during the container build process.
  • Node.js packages are included in the base image or OS layer.

When node_modules is present, all required dependencies and their package.json files are already present in the container.

Step 3: Update the Dependency Setting in the Scan Profile

For Docker images that already include Node.js dependencies, avoid using a scan profile that resolves transitive dependencies. Instead, configure the scan profile dependency setting to one of the following:

  • No dependencies (recommended best practice for container scans).
  • First‑level dependencies only.

These settings scan artifacts directly from the container, avoiding recursive calls to the npm registry.

NOTE: Scan profile names (for example, “Basic”) can be customized. Always verify the dependency setting configured in the profile rather than relying on the profile name alone.

Step 4: Re‑Run the Docker Scan

Re‑run the Code Insight remote Docker scan using the updated scan profile. The scan completes much faster because Code Insight no longer attempts to resolve npm transitive dependencies over the network.

Outcome

After updating the scan profile dependency setting:

  • Docker image scans complete in a reasonable amount of time.
  • npm registry timeout warnings no longer appear in the agent logs.
  • The generated inventory and SBOM remain accurate for container scans.
Was this helpful?
Support Hub
Product
Code Insight
Version
7.x
Related Products
Code Insight
Deployment type
On-premises
Visibility
Guest
URL Name
Code-Insight-remote-Docker-scans-might-take-a-very-long-time--up-to-several-days--due-to-npm-registry-timeouts

Related Articles

Create a case with Support
0/255
Upload Attachment
File Upload
Maximum file size allowed is 3 MB.
File type not supported.
Supported file types:
Documents (.txt, .doc, .docx, .pdf), Images (.jpg, .png), Comma Separated Files (.csv) Speadsheets (.xlsx, .xls)

Are you sure you want to cancel the case creation?

Are you sure you want to close this case

Get Hotline support
Products Region Phone Numbers
FlexNet Operations
FlexNet Embedded
FlexNet Publisher
FlexNet Connect
FlexNet Code Insight
InstallAnywhere
InstallShield 		North America  * +1 630-332-2513 (toll)
+1 877-279-2853 (toll-free in North America)
Europe  * +44 1925 944367 (toll)
+44 800 047 8642 (toll-free in Europe)
Japan  * +81 3-4540-5335 (select option 2)
Australia  * +61 3 9895 2177
+61 1800 560 603 (toll-free in Australia)
Usage Intelligence (formerly Revulytics)
Compliance Intelligence 		Please use the Case Portal to submit your support ticket or reach out to your Revenera contact.
Book an Appointment
File Upload
Maximum file size allowed is 3 MB.
File type not supported.
Supported file types:
Documents (.txt, .doc, .docx, .pdf), Images (.jpg, .png), Comma Separated Files (.csv) Speadsheets (.xlsx, .xls)
+1.800.374.4353
CONTACT US REVENERA.COM FLEXERA.com
© 2026 Flexera Software. All Rights Reserved.
Privacy policy Terms and conditions Flexera Community Contact Us
Loading
Code Insight Remote Docker Scans Might Take a Very Long Time (Up to Several Days) Due to npm Registry Timeouts