@npmcli/promise-spawn
Advanced tools
Comparing version 1.3.1 to 1.3.2
13
index.js
@@ -14,14 +14,9 @@ const {spawn} = require('child_process') | ||
const isRoot = process.getuid && process.getuid() === 0 | ||
return !isRoot ? promiseSpawnUid(cmd, args, { | ||
const { uid, gid } = isRoot ? inferOwner.sync(cwd) : {} | ||
return promiseSpawnUid(cmd, args, { | ||
...opts, | ||
cwd, | ||
uid: undefined, | ||
gid: undefined, | ||
uid, | ||
gid | ||
}, extra) | ||
: inferOwner(cwd).then(({uid, gid}) => promiseSpawnUid(cmd, args, { | ||
...opts, | ||
cwd, | ||
uid, | ||
gid, | ||
}, extra)) | ||
} | ||
@@ -28,0 +23,0 @@ |
{ | ||
"name": "@npmcli/promise-spawn", | ||
"version": "1.3.1", | ||
"version": "1.3.2", | ||
"files": [ | ||
@@ -5,0 +5,0 @@ "index.js" |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
6014
68
2