@pnpm/exec
Advanced tools
@pnpm/exec - npm Package Compare versions
Comparing version 1.1.3 to 1.1.4
@@ -12,25 +12,17 @@ "use strict"; | ||
| const spawn = require("cross-spawn"); | ||
| const fs = require("fs"); | ||
| const got = require("got"); | ||
| const path = require("path"); | ||
| const installFile = require.resolve('@pnpm/self-installer'); | ||
| exports.default = () => __awaiter(this, void 0, void 0, function* () { | ||
| const installFile = path.join(__dirname, 'install.js'); | ||
| yield new Promise((resolve, reject) => { | ||
| got.stream('https://unpkg.com/@pnpm/self-installer') | ||
| .pipe(fs.createWriteStream(installFile)) | ||
| .on('error', reject) | ||
| .on('close', () => { | ||
| const proc = spawn('node', [installFile], { | ||
| stdio: 'inherit', | ||
| }); | ||
| proc.on('error', reject); | ||
| proc.on('close', (code) => { | ||
| if (code > 0) { | ||
| return reject(new Error(`Exit code: ${code}`)); | ||
| } | ||
| return resolve(); | ||
| }); | ||
| const proc = spawn('node', [installFile], { | ||
| stdio: 'inherit', | ||
| }); | ||
| proc.on('error', reject); | ||
| proc.on('close', (code) => { | ||
| if (code > 0) { | ||
| return reject(new Error(`Exit code: ${code}`)); | ||
| } | ||
| return resolve(); | ||
| }); | ||
| }); | ||
| }); | ||
| //# sourceMappingURL=installPnpm.js.map |
| { | ||
| "name": "@pnpm/exec", | ||
| "version": "1.1.3", | ||
| "version": "1.1.4", | ||
| "description": "Executes pnpm. If pnpm is not installed, installs it first", | ||
@@ -59,8 +59,8 @@ "main": "lib/index.js", | ||
| "dependencies": { | ||
| "@pnpm/self-installer": "^2.0.0", | ||
| "@types/got": "^7.1.4", | ||
| "@types/node": "^9.3.0", | ||
| "command-exists": "^1.2.2", | ||
| "cross-spawn": "^5.1.0", | ||
| "got": "^8.0.0" | ||
| "cross-spawn": "^5.1.0" | ||
| } | ||
| } |
Sorry, the diff of this file is not supported yet
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
AI-detected potential security risk
Supply chain riskAI has determined that this package may contain potential security issues or vulnerabilities.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-50%
1
- Number of medium supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Total package byte prevSize
- decreased by-5.67%
8848
- Lines of code
- decreased by-8.6%
85
Dependency changes
+ Added@pnpm/self-installer@^2.0.0
+ Added@pnpm/self-installer@2.2.1(transitive)
- Removedgot@^8.0.0
- Removed@sindresorhus/is@0.7.0(transitive)
- Removedcacheable-request@2.1.4(transitive)
- Removedclone-response@1.0.2(transitive)
- Removedcore-util-is@1.0.3(transitive)
- Removeddecode-uri-component@0.2.2(transitive)
- Removeddecompress-response@3.3.0(transitive)
- Removedduplexer3@0.1.5(transitive)
- Removedfrom2@2.3.0(transitive)
- Removedget-stream@3.0.0(transitive)
- Removedgot@8.3.2(transitive)
- Removedhas-symbol-support-x@1.4.2(transitive)
- Removedhas-to-string-tag-x@1.4.1(transitive)
- Removedhttp-cache-semantics@3.8.1(transitive)
- Removedinherits@2.0.4(transitive)
- Removedinto-stream@3.1.0(transitive)
- Removedis-object@1.0.2(transitive)
- Removedis-plain-obj@1.1.0(transitive)
- Removedis-retry-allowed@1.2.0(transitive)
- Removedisarray@1.0.0(transitive)
- Removedisurl@1.0.0(transitive)
- Removedjson-buffer@3.0.0(transitive)
- Removedkeyv@3.0.0(transitive)
- Removedlowercase-keys@1.0.01.0.1(transitive)
- Removedmimic-response@1.0.1(transitive)
- Removednormalize-url@2.0.1(transitive)
- Removedobject-assign@4.1.1(transitive)
- Removedp-cancelable@0.4.1(transitive)
- Removedp-finally@1.0.0(transitive)
- Removedp-is-promise@1.1.0(transitive)
- Removedp-timeout@2.0.1(transitive)
- Removedpify@3.0.0(transitive)
- Removedprepend-http@2.0.0(transitive)
- Removedprocess-nextick-args@2.0.1(transitive)
- Removedquery-string@5.1.1(transitive)
- Removedreadable-stream@2.3.8(transitive)
- Removedresponselike@1.0.2(transitive)
- Removedsafe-buffer@5.1.25.2.1(transitive)
- Removedsort-keys@2.0.0(transitive)
- Removedstrict-uri-encode@1.1.0(transitive)
- Removedstring_decoder@1.1.1(transitive)
- Removedtimed-out@4.0.1(transitive)
- Removedurl-parse-lax@3.0.0(transitive)
- Removedurl-to-options@1.0.1(transitive)
- Removedutil-deprecate@1.0.2(transitive)