🚨 Active Supply Chain Attack:node-ipc Package Compromised.Learn More
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@pnpm/lockfile.utils

Package Overview
Dependencies
Maintainers
2
Versions
47
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@pnpm/lockfile.utils - npm Package Compare versions

Comparing version
1004.0.3
 to
1100.0.0
+6
lib/toLockfileResolution.d.ts
import type { LockfileResolution } from '@pnpm/lockfile.types';
import type { Resolution } from '@pnpm/resolving.resolver-base';
export declare function toLockfileResolution(pkg: {
name: string;
version: string;
}, resolution: Resolution, registry: string, lockfileIncludeTarballUrl?: boolean): LockfileResolution;
+35
lib/toLockfileResolution.js
import getNpmTarballUrl from 'get-npm-tarball-url';
export function toLockfileResolution(pkg, resolution, registry, lockfileIncludeTarballUrl) {
if (resolution.type !== undefined || !resolution['integrity']) {
return resolution;
}
if (lockfileIncludeTarballUrl) {
return {
integrity: resolution['integrity'],
tarball: resolution['tarball'],
};
}
if (lockfileIncludeTarballUrl === false) {
return {
integrity: resolution['integrity'],
};
}
// Sometimes packages are hosted under non-standard tarball URLs.
// For instance, when they are hosted on npm Enterprise. See https://github.com/pnpm/pnpm/issues/867
// Or in other weird cases, like https://github.com/pnpm/pnpm/issues/1072
const expectedTarball = getNpmTarballUrl(pkg.name, pkg.version, { registry });
const actualTarball = resolution['tarball'].replaceAll('%2f', '/');
if (removeProtocol(expectedTarball) !== removeProtocol(actualTarball)) {
return {
integrity: resolution['integrity'],
tarball: resolution['tarball'],
};
}
return {
integrity: resolution['integrity'],
};
}
function removeProtocol(url) {
return url.split('://')[1];
}
//# sourceMappingURL=toLockfileResolution.js.map
+3
-2
lib/index.d.ts

@@ -1,2 +0,2 @@

import { refToRelative } from '@pnpm/dependency-path';
import { refToRelative } from '@pnpm/deps.path';
export { nameVerFromPkgSnapshot } from './nameVerFromPkgSnapshot.js';

@@ -6,4 +6,5 @@ export { packageIdFromSnapshot } from './packageIdFromSnapshot.js';

export { pkgSnapshotToResolution } from './pkgSnapshotToResolution.js';
export { refIsLocalTarball, refIsLocalDirectory } from './refIsLocalTarball.js';
export { refIsLocalDirectory, refIsLocalTarball } from './refIsLocalTarball.js';
export { toLockfileResolution } from './toLockfileResolution.js';
export * from '@pnpm/lockfile.types';
export declare const getPkgShortId: typeof refToRelative;
+9
-31
lib/index.js

@@ -1,33 +0,11 @@

"use strict";
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
var desc = Object.getOwnPropertyDescriptor(m, k);
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
desc = { enumerable: true, get: function() { return m[k]; } };
}
Object.defineProperty(o, k2, desc);
}) : (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
o[k2] = m[k];
}));
var __exportStar = (this && this.__exportStar) || function(m, exports) {
for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.getPkgShortId = exports.refIsLocalDirectory = exports.refIsLocalTarball = exports.pkgSnapshotToResolution = exports.packageIsIndependent = exports.packageIdFromSnapshot = exports.nameVerFromPkgSnapshot = void 0;
const dependency_path_1 = require("@pnpm/dependency-path");
var nameVerFromPkgSnapshot_js_1 = require("./nameVerFromPkgSnapshot.js");
Object.defineProperty(exports, "nameVerFromPkgSnapshot", { enumerable: true, get: function () { return nameVerFromPkgSnapshot_js_1.nameVerFromPkgSnapshot; } });
var packageIdFromSnapshot_js_1 = require("./packageIdFromSnapshot.js");
Object.defineProperty(exports, "packageIdFromSnapshot", { enumerable: true, get: function () { return packageIdFromSnapshot_js_1.packageIdFromSnapshot; } });
var packageIsIndependent_js_1 = require("./packageIsIndependent.js");
Object.defineProperty(exports, "packageIsIndependent", { enumerable: true, get: function () { return packageIsIndependent_js_1.packageIsIndependent; } });
var pkgSnapshotToResolution_js_1 = require("./pkgSnapshotToResolution.js");
Object.defineProperty(exports, "pkgSnapshotToResolution", { enumerable: true, get: function () { return pkgSnapshotToResolution_js_1.pkgSnapshotToResolution; } });
var refIsLocalTarball_js_1 = require("./refIsLocalTarball.js");
Object.defineProperty(exports, "refIsLocalTarball", { enumerable: true, get: function () { return refIsLocalTarball_js_1.refIsLocalTarball; } });
Object.defineProperty(exports, "refIsLocalDirectory", { enumerable: true, get: function () { return refIsLocalTarball_js_1.refIsLocalDirectory; } });
__exportStar(require("@pnpm/lockfile.types"), exports);
import { refToRelative } from '@pnpm/deps.path';
export { nameVerFromPkgSnapshot } from './nameVerFromPkgSnapshot.js';
export { packageIdFromSnapshot } from './packageIdFromSnapshot.js';
export { packageIsIndependent } from './packageIsIndependent.js';
export { pkgSnapshotToResolution } from './pkgSnapshotToResolution.js';
export { refIsLocalDirectory, refIsLocalTarball } from './refIsLocalTarball.js';
export { toLockfileResolution } from './toLockfileResolution.js';
export * from '@pnpm/lockfile.types';
// for backward compatibility
exports.getPkgShortId = dependency_path_1.refToRelative;
export const getPkgShortId = refToRelative;
//# sourceMappingURL=index.js.map
+2
-2
lib/nameVerFromPkgSnapshot.d.ts

@@ -1,3 +0,3 @@

import { type PackageSnapshot } from '@pnpm/lockfile.types';
import { type PkgResolutionId } from '@pnpm/types';
import type { PackageSnapshot } from '@pnpm/lockfile.types';
import type { PkgResolutionId } from '@pnpm/types';
export interface NameVer {

@@ -4,0 +4,0 @@ name: string;

+2
-28
lib/nameVerFromPkgSnapshot.js

@@ -1,29 +0,3 @@

"use strict";
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
var desc = Object.getOwnPropertyDescriptor(m, k);
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
desc = { enumerable: true, get: function() { return m[k]; } };
}
Object.defineProperty(o, k2, desc);
}) : (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
o[k2] = m[k];
}));
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
Object.defineProperty(o, "default", { enumerable: true, value: v });
}) : function(o, v) {
o["default"] = v;
});
var __importStar = (this && this.__importStar) || function (mod) {
if (mod && mod.__esModule) return mod;
var result = {};
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
__setModuleDefault(result, mod);
return result;
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.nameVerFromPkgSnapshot = nameVerFromPkgSnapshot;
const dp = __importStar(require("@pnpm/dependency-path"));
function nameVerFromPkgSnapshot(depPath, pkgSnapshot) {
import * as dp from '@pnpm/deps.path';
export function nameVerFromPkgSnapshot(depPath, pkgSnapshot) {
const pkgInfo = dp.parse(depPath);

@@ -30,0 +4,0 @@ return {

+2
-2
lib/packageIdFromSnapshot.d.ts

@@ -1,3 +0,3 @@

import { type DepPath, type PkgId } from '@pnpm/types';
import { type PackageSnapshot } from '@pnpm/lockfile.types';
import type { PackageSnapshot } from '@pnpm/lockfile.types';
import type { DepPath, PkgId } from '@pnpm/types';
export declare function packageIdFromSnapshot(depPath: DepPath, pkgSnapshot: PackageSnapshot): PkgId;
+2
-28
lib/packageIdFromSnapshot.js

@@ -1,29 +0,3 @@

"use strict";
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
var desc = Object.getOwnPropertyDescriptor(m, k);
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
desc = { enumerable: true, get: function() { return m[k]; } };
}
Object.defineProperty(o, k2, desc);
}) : (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
o[k2] = m[k];
}));
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
Object.defineProperty(o, "default", { enumerable: true, value: v });
}) : function(o, v) {
o["default"] = v;
});
var __importStar = (this && this.__importStar) || function (mod) {
if (mod && mod.__esModule) return mod;
var result = {};
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
__setModuleDefault(result, mod);
return result;
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.packageIdFromSnapshot = packageIdFromSnapshot;
const dp = __importStar(require("@pnpm/dependency-path"));
function packageIdFromSnapshot(depPath, pkgSnapshot) {
import * as dp from '@pnpm/deps.path';
export function packageIdFromSnapshot(depPath, pkgSnapshot) {
if (pkgSnapshot.id)

@@ -30,0 +4,0 @@ return pkgSnapshot.id;

+1
-1
lib/packageIsIndependent.d.ts

@@ -1,2 +0,2 @@

import { type PackageSnapshot } from '@pnpm/lockfile.types';
import type { PackageSnapshot } from '@pnpm/lockfile.types';
export declare function packageIsIndependent({ dependencies, optionalDependencies }: PackageSnapshot): boolean;
+1
-4
lib/packageIsIndependent.js

@@ -1,7 +0,4 @@

"use strict";
Object.defineProperty(exports, "__esModule", { value: true });
exports.packageIsIndependent = packageIsIndependent;
function packageIsIndependent({ dependencies, optionalDependencies }) {
export function packageIsIndependent({ dependencies, optionalDependencies }) {
return dependencies === undefined && optionalDependencies === undefined;
}
//# sourceMappingURL=packageIsIndependent.js.map
+3
-3
lib/pkgSnapshotToResolution.d.ts

@@ -1,4 +0,4 @@

import { type PackageSnapshot } from '@pnpm/lockfile.types';
import { type Resolution } from '@pnpm/resolver-base';
import { type Registries } from '@pnpm/types';
import type { PackageSnapshot } from '@pnpm/lockfile.types';
import type { Resolution } from '@pnpm/resolving.resolver-base';
import type { Registries } from '@pnpm/types';
export declare function pkgSnapshotToResolution(depPath: string, pkgSnapshot: PackageSnapshot, registries: Registries): Resolution;
+9
-15
lib/pkgSnapshotToResolution.js

@@ -1,18 +0,12 @@

"use strict";
var __importDefault = (this && this.__importDefault) || function (mod) {
return (mod && mod.__esModule) ? mod : { "default": mod };
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.pkgSnapshotToResolution = pkgSnapshotToResolution;
const url_1 = __importDefault(require("url"));
const get_npm_tarball_url_1 = __importDefault(require("get-npm-tarball-url"));
const pick_fetcher_1 = require("@pnpm/pick-fetcher");
const nameVerFromPkgSnapshot_js_1 = require("./nameVerFromPkgSnapshot.js");
function pkgSnapshotToResolution(depPath, pkgSnapshot, registries) {
import url from 'node:url';
import { isGitHostedPkgUrl } from '@pnpm/fetching.pick-fetcher';
import getNpmTarballUrl from 'get-npm-tarball-url';
import { nameVerFromPkgSnapshot } from './nameVerFromPkgSnapshot.js';
export function pkgSnapshotToResolution(depPath, pkgSnapshot, registries) {
if (Boolean(pkgSnapshot.resolution.type) ||
pkgSnapshot.resolution.tarball?.startsWith('file:') ||
(0, pick_fetcher_1.isGitHostedPkgUrl)(pkgSnapshot.resolution.tarball ?? '')) {
isGitHostedPkgUrl(pkgSnapshot.resolution.tarball ?? '')) {
return pkgSnapshot.resolution;
}
const { name, version } = (0, nameVerFromPkgSnapshot_js_1.nameVerFromPkgSnapshot)(depPath, pkgSnapshot);
const { name, version } = nameVerFromPkgSnapshot(depPath, pkgSnapshot);
let registry = '';

@@ -32,3 +26,3 @@ if (name != null) {

else {
tarball = new url_1.default.URL(pkgSnapshot.resolution.tarball, registry.endsWith('/') ? registry : `${registry}/`).toString();
tarball = new url.URL(pkgSnapshot.resolution.tarball, registry.endsWith('/') ? registry : `${registry}/`).toString();
}

@@ -43,5 +37,5 @@ return {

}
return (0, get_npm_tarball_url_1.default)(name, version, { registry });
return getNpmTarballUrl(name, version, { registry });
}
}
//# sourceMappingURL=pkgSnapshotToResolution.js.map
+2
-6
lib/refIsLocalTarball.js

@@ -1,11 +0,7 @@

"use strict";
Object.defineProperty(exports, "__esModule", { value: true });
exports.refIsLocalTarball = refIsLocalTarball;
exports.refIsLocalDirectory = refIsLocalDirectory;
function refIsLocalTarball(ref) {
export function refIsLocalTarball(ref) {
return ref.startsWith('file:') && (ref.endsWith('.tgz') || ref.endsWith('.tar.gz') || ref.endsWith('.tar'));
}
function refIsLocalDirectory(ref) {
export function refIsLocalDirectory(ref) {
return ref.startsWith('file:') && !refIsLocalTarball(ref);
}
//# sourceMappingURL=refIsLocalTarball.js.map
+18
-16
package.json
{
"name": "@pnpm/lockfile.utils",
"version": "1004.0.3",
"version": "1100.0.0",
"description": "Utils for dealing with pnpm-lock.yaml",
"keywords": [
"pnpm",
"pnpm10",
"pnpm11",
"lockfile",

@@ -18,3 +18,3 @@ "shrinkwrap"

},
"type": "commonjs",
"type": "module",
"main": "lib/index.js",

@@ -32,17 +32,19 @@ "types": "lib/index.d.ts",

"ramda": "npm:@pnpm/ramda@0.28.1",
"@pnpm/lockfile.types": "1002.1.0",
"@pnpm/dependency-path": "1001.1.10",
"@pnpm/pick-fetcher": "1001.0.0",
"@pnpm/resolver-base": "1005.4.1",
"@pnpm/types": "1001.3.0"
"@pnpm/deps.path": "1100.0.0",
"@pnpm/hooks.types": "1100.0.0",
"@pnpm/error": "1100.0.0",
"@pnpm/fetching.pick-fetcher": "1100.0.0",
"@pnpm/resolving.resolver-base": "1100.0.0",
"@pnpm/types": "1100.0.0",
"@pnpm/lockfile.types": "1100.0.0"
},
"devDependencies": {
"@types/ramda": "0.29.12",
"tempy": "^1.0.1",
"write-yaml-file": "^5.0.0",
"@types/ramda": "0.31.1",
"tempy": "3.0.0",
"write-yaml-file": "^6.0.0",
"yaml-tag": "1.1.0",
"@pnpm/lockfile.utils": "1004.0.3"
"@pnpm/lockfile.utils": "1100.0.0"
},
"engines": {
"node": ">=18.12"
"node": ">=22.13"
},

@@ -54,6 +56,6 @@ "jest": {

"lint": "eslint \"src/**/*.ts\" \"test/**/*.ts\"",
"_test": "jest",
"test": "pnpm run compile && pnpm run _test",
"compile": "tsc --build && pnpm run lint --fix"
"test": "pn compile && pn .test",
"compile": "tsgo --build && pn lint --fix",
".test": "cross-env NODE_OPTIONS=\"$NODE_OPTIONS --experimental-vm-modules --disable-warning=ExperimentalWarning --disable-warning=DEP0169\" jest"
}
}
-1
lib/index.js.map
{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;AAAA,2DAAqD;AAErD,yEAAoE;AAA3D,mIAAA,sBAAsB,OAAA;AAC/B,uEAAkE;AAAzD,iIAAA,qBAAqB,OAAA;AAC9B,qEAAgE;AAAvD,+HAAA,oBAAoB,OAAA;AAC7B,2EAAsE;AAA7D,qIAAA,uBAAuB,OAAA;AAChC,+DAA+E;AAAtE,yHAAA,iBAAiB,OAAA;AAAE,2HAAA,mBAAmB,OAAA;AAC/C,uDAAoC;AAEpC,6BAA6B;AAChB,QAAA,aAAa,GAAG,+BAAa,CAAA"}
-1
lib/nameVerFromPkgSnapshot.js.map
{"version":3,"file":"nameVerFromPkgSnapshot.js","sourceRoot":"","sources":["../src/nameVerFromPkgSnapshot.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;AAWA,wDAWC;AArBD,0DAA2C;AAU3C,SAAgB,sBAAsB,CACpC,OAAe,EACf,WAA4B;IAE5B,MAAM,OAAO,GAAG,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;IACjC,OAAO;QACL,IAAI,EAAE,OAAO,CAAC,IAAc;QAC5B,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;QAC1C,OAAO,EAAE,WAAW,CAAC,OAAO,IAAI,OAAO,CAAC,OAAiB,IAAI,SAAS;QACtE,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;KAC3C,CAAA;AACH,CAAC"}
-1
lib/packageIdFromSnapshot.js.map
{"version":3,"file":"packageIdFromSnapshot.js","sourceRoot":"","sources":["../src/packageIdFromSnapshot.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;AAIA,sDAMC;AARD,0DAA2C;AAE3C,SAAgB,qBAAqB,CACnC,OAAgB,EAChB,WAA4B;IAE5B,IAAI,WAAW,CAAC,EAAE;QAAE,OAAO,WAAW,CAAC,EAAW,CAAA;IAClD,OAAO,EAAE,CAAC,eAAe,CAAC,OAAO,CAAC,IAAI,OAAO,CAAA;AAC/C,CAAC"}
-1
lib/packageIsIndependent.js.map
{"version":3,"file":"packageIsIndependent.js","sourceRoot":"","sources":["../src/packageIsIndependent.ts"],"names":[],"mappings":";;AAEA,oDAEC;AAFD,SAAgB,oBAAoB,CAAE,EAAE,YAAY,EAAE,oBAAoB,EAAmB;IAC3F,OAAO,YAAY,KAAK,SAAS,IAAI,oBAAoB,KAAK,SAAS,CAAA;AACzE,CAAC"}
-1
lib/pkgSnapshotToResolution.js.map
{"version":3,"file":"pkgSnapshotToResolution.js","sourceRoot":"","sources":["../src/pkgSnapshotToResolution.ts"],"names":[],"mappings":";;;;;AAQA,0DAyCC;AAjDD,8CAAqB;AAIrB,8EAAkD;AAClD,qDAAsD;AACtD,2EAAoE;AAEpE,SAAgB,uBAAuB,CACrC,OAAe,EACf,WAA4B,EAC5B,UAAsB;IAEtB,IACE,OAAO,CAAE,WAAW,CAAC,UAAgC,CAAC,IAAI,CAAC;QAC1D,WAAW,CAAC,UAAgC,CAAC,OAAO,EAAE,UAAU,CAAC,OAAO,CAAC;QAC1E,IAAA,gCAAiB,EAAE,WAAW,CAAC,UAAgC,CAAC,OAAO,IAAI,EAAE,CAAC,EAC9E,CAAC;QACD,OAAO,WAAW,CAAC,UAAwB,CAAA;IAC7C,CAAC;IACD,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,IAAA,kDAAsB,EAAC,OAAO,EAAE,WAAW,CAAC,CAAA;IACtE,IAAI,QAAQ,GAAW,EAAE,CAAA;IACzB,IAAI,IAAI,IAAI,IAAI,EAAE,CAAC;QACjB,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,GAAG,EAAE,CAAC;YACpB,QAAQ,GAAG,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;QAC3C,CAAC;IACH,CAAC;IACD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,QAAQ,GAAG,UAAU,CAAC,OAAO,CAAA;IAC/B,CAAC;IACD,IAAI,OAAgB,CAAA;IACpB,IAAI,CAAE,WAAW,CAAC,UAAgC,CAAC,OAAO,EAAE,CAAC;QAC3D,OAAO,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAA;IAChC,CAAC;SAAM,CAAC;QACN,OAAO,GAAG,IAAI,aAAG,CAAC,GAAG,CAAE,WAAW,CAAC,UAAgC,CAAC,OAAO,EACzE,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,GAAG,QAAQ,GAAG,CACnD,CAAC,QAAQ,EAAE,CAAA;IACd,CAAC;IACD,OAAO;QACL,GAAG,WAAW,CAAC,UAAU;QACzB,OAAO;KACM,CAAA;IAEf,SAAS,UAAU,CAAE,QAAgB;QACnC,IAAI,CAAC,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACtB,MAAM,IAAI,KAAK,CAAC,iDAAiD,OAAO,EAAE,CAAC,CAAA;QAC7E,CAAC;QACD,OAAO,IAAA,6BAAgB,EAAC,IAAI,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAA;IACtD,CAAC;AACH,CAAC"}
-1
lib/refIsLocalTarball.js.map
{"version":3,"file":"refIsLocalTarball.js","sourceRoot":"","sources":["../src/refIsLocalTarball.ts"],"names":[],"mappings":";;AAAA,8CAEC;AAED,kDAEC;AAND,SAAgB,iBAAiB,CAAE,GAAW;IAC5C,OAAO,GAAG,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAA;AAC7G,CAAC;AAED,SAAgB,mBAAmB,CAAE,GAAW;IAC9C,OAAO,GAAG,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAA;AAC3D,CAAC"}