Hey @eps1lon ,

That's because the object-hash package is using the Node.js crypto API, and as your sandbox is completely running in the browser, that's not available.

What you can do is use a server sandbox (which just got out of beta yesterday!), which runs in a container, and as such can fully replicate a local development environment. I made one starting from your sandbox here: https://codesandbox.io/s/y3j335o17x .

It's a bit cumbersome at the moment - you'll have to fork the node sandbox and copy files one by one, at least that's what I did -, but we'll make it easier to switch between browser and server sandboxes soon enough!

Also closing this, as it's expected behavior.

That's because the object-hash package is using the Node.js crypto API, and as your sandbox is completely running in the browser, that's not available.

object-hash is supposed to run in the browser and has set the browser field in package.json specifically for that purpose.

webpack respects this by default. I guess codesandbox is either ignoring this or changing the priority. Is there a reason for this?

@lbogdan Please consider re-opening this. I suspect that there are plenty more packages affected that use the browser field.

Ah, sorry, I completely missed the browser entry in package.json! I remember we honoring this, we'll take a look at why that doesn't work in this case. Reopening and marking this as a bug.

Update: after @CompuIves took a look at it, we're indeed honoring the browser entry, the bug seems to be related to the code in /dist/object_hash.js .

Update: after @CompuIves took a look at it, we're indeed honoring the browser entry, the bug seems to be related to the code in /dist/object_hash.js .

I updated my initial post to clarify what I meant with "locally":

Edit: What I meant by locally is that that I can download the sandbox, start it locally and it does not crash in the browser.

So there is a difference between webpack and sandpack. object-hash is running in the browser if bundled by webpack with a config from react-scripts.

To further confirm this:
https://codesandbox.io/s/km98l3mx3
It's a vanilla sandbox that loads https://unpkg.com/[email protected]/dist/object_hash.js with a script tag.

Coincidentally, it's also working with our new packager, which we're yet to switch to. We'll let you know as soon as we have any updates on that!

This issue is stale because it has been open many days with no activity. It will be closed soon unless the stale label is removed or a comment is made.

Confirmed that the issue still exists.

Closing this as I just confirmed newer versions of the library work confirming what Bogdan said that we do support the browser option but there was a problem in that specific version

Hope this makes sense to you

@SaraVieira That doesn't make sense to me. The codesandbox linked in the initial issue description still reproduces the original error with codesandbox version 7bf3f2414.

@eps1lon I guess what @SaraVieira was trying to say is that it works with a newer version of object-hash: https://codesandbox.io/s/object-hash-forked-u1zw1 .

Yes, sorry. What I mean is that it works with newer versions of object hash

It was an issue with that specific version that's old