@npmcli/promise-spawn
Advanced tools
Comparing version 4.0.0 to 5.0.0
const { spawn } = require('child_process') | ||
const inferOwner = require('infer-owner') | ||
@@ -11,24 +10,2 @@ const isPipe = (stdio = 'pipe', fd) => | ||
const promiseSpawn = (cmd, args, opts = {}, extra = {}) => { | ||
const cwd = opts.cwd || process.cwd() | ||
const isRoot = process.getuid && process.getuid() === 0 | ||
const { uid, gid } = isRoot ? inferOwner.sync(cwd) : {} | ||
return promiseSpawnUid(cmd, args, { | ||
...opts, | ||
cwd, | ||
uid, | ||
gid, | ||
}, extra) | ||
} | ||
const stdioResult = (stdout, stderr, { stdioString, stdio }) => | ||
stdioString ? { | ||
stdout: isPipe(stdio, 1) ? Buffer.concat(stdout).toString() : null, | ||
stderr: isPipe(stdio, 2) ? Buffer.concat(stderr).toString() : null, | ||
} | ||
: { | ||
stdout: isPipe(stdio, 1) ? Buffer.concat(stdout) : null, | ||
stderr: isPipe(stdio, 2) ? Buffer.concat(stderr) : null, | ||
} | ||
const promiseSpawnUid = (cmd, args, opts, extra) => { | ||
let proc | ||
@@ -76,2 +53,12 @@ const p = new Promise((res, rej) => { | ||
const stdioResult = (stdout, stderr, { stdioString, stdio }) => | ||
stdioString ? { | ||
stdout: isPipe(stdio, 1) ? Buffer.concat(stdout).toString().trim() : null, | ||
stderr: isPipe(stdio, 2) ? Buffer.concat(stderr).toString().trim() : null, | ||
} | ||
: { | ||
stdout: isPipe(stdio, 1) ? Buffer.concat(stdout) : null, | ||
stderr: isPipe(stdio, 2) ? Buffer.concat(stderr) : null, | ||
} | ||
module.exports = promiseSpawn |
{ | ||
"name": "@npmcli/promise-spawn", | ||
"version": "4.0.0", | ||
"version": "5.0.0", | ||
"files": [ | ||
@@ -34,4 +34,4 @@ "bin/", | ||
"devDependencies": { | ||
"@npmcli/eslint-config": "^3.0.1", | ||
"@npmcli/template-oss": "4.5.1", | ||
"@npmcli/eslint-config": "^4.0.0", | ||
"@npmcli/template-oss": "4.7.1", | ||
"minipass": "^3.1.1", | ||
@@ -45,7 +45,4 @@ "tap": "^16.0.1" | ||
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.", | ||
"version": "4.5.1" | ||
}, | ||
"dependencies": { | ||
"infer-owner": "^1.0.4" | ||
"version": "4.7.1" | ||
} | ||
} |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
0
1
5562
57
- Removedinfer-owner@^1.0.4
- Removedinfer-owner@1.0.4(transitive)