Security News
RubyGems.org Adds New Maintainer Role
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
@lerna/prompt
Advanced tools
@lerna/prompt
An internal Lerna tool
You probably shouldn't, at least directly.
Install lerna for access to the lerna
CLI.
3.0.0 (2018-08-10)
npm pack
experience (627cfc2)npm pack
before npm publish
(8d80b2c)lerna version
from of lerna publish
(#1522) (8b97394), closes #277 #936 #956 #961 #1056 #1118 #1385 #1483 #1494changed: The package names emitted to stdout are no longer prefixed by a "- ", and private packages are no longer displayed by default.
list: The default output of lerna ls
no longer shows version strings or private packages.
The new alias lerna la
resembles the old output, with the addition of relative path to the package
The new alias lerna ll
is a shortcut for the new --long
option
A new --parseable
option has been added to aid magical piping incantations
--preid
now defaults to "alpha" during prereleases:The previous default for this option was undefined, which led to an awkward "1.0.1-0" result when passed to semver.inc()
.
The new default "alpha" yields a much more useful "1.0.1-alpha.0" result. Any previous prerelease ID will be preserved, just as it was before.
--no-verify
is no longer passed to git commit
by default, but controlled by the new --commit-hooks
option:
The previous behavior was too overzealous, and the new option operates exactly like the corresponding npm version option of the same name.
As long as your pre-commit hooks are properly scoped to ignore changes in package.json files, this change should not affect you. If that is not the case, you may pass --no-commit-hooks
to restore the previous behavior.
<a name="3.0.0-rc.0"></a>
FAQs
An internal Lerna tool
The npm package @lerna/prompt receives a total of 161,773 weekly downloads. As such, @lerna/prompt popularity was classified as popular.
We found that @lerna/prompt demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.
Security News
Research
Socket's threat research team has detected five malicious npm packages targeting Roblox developers, deploying malware to steal credentials and personal data.