🚨 Active Supply Chain Attack:node-ipc Package Compromised.Learn More
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@qoder-ai/qodercli

Package Overview
Dependencies
Maintainers
1
Versions
105
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@qoder-ai/qodercli - npm Package Compare versions

Comparing version
0.2.16
 to
0.2.17-beta1
+133
postinstall.cjs
#!/usr/bin/env node
'use strict';
/**
* @license
* Copyright 2025 Google LLC
* SPDX-License-Identifier: Apache-2.0
*/
/**
* npm postinstall script for @qoder-ai/qodercli (pure JS bundle).
*
* On Windows: ensures npm's global bin directory is on the user's PATH.
* On all platforms: hints about optional ripgrep dependency.
*
* IMPORTANT: This script must NEVER cause `npm install` to fail.
* All operations are wrapped in try/catch and errors are silently ignored.
*/
// --- ripgrep check (all platforms) ---
try {
require('child_process').execSync('rg --version', { stdio: 'ignore' });
} catch {
console.log(
'\n ripgrep (rg) not found. Install for best search performance:' +
'\n https://github.com/BurntSushi/ripgrep#installation\n',
);
}
// --- Windows PATH registration ---
if (process.platform === 'win32') {
try {
ensureNpmBinOnPath();
} catch {
// Silent — never break npm install
}
}
function ensureNpmBinOnPath() {
const { execSync } = require('child_process');
const path = require('path');
// 1. Determine npm's global bin directory.
// On Windows, npm places .cmd shims directly in the prefix directory
// (not in a /bin subfolder like Unix).
let npmBinDir;
if (process.env.npm_config_prefix) {
// npm sets this env var during lifecycle scripts
npmBinDir = process.env.npm_config_prefix;
} else {
// Fallback: ask npm directly
try {
npmBinDir = execSync('npm prefix -g', {
encoding: 'utf-8',
timeout: 10000,
}).trim();
} catch {
return; // Can't determine prefix — bail silently
}
}
if (!npmBinDir) return;
// Normalize path for consistent comparison
npmBinDir = path.normalize(npmBinDir);
// 2. Read current user PATH from Windows Registry (HKCU\Environment)
let currentPath = '';
try {
const output = execSync('reg query "HKCU\\Environment" /v Path', {
encoding: 'utf-8',
timeout: 10000,
});
// Output format:
// HKEY_CURRENT_USER\Environment
// Path REG_EXPAND_SZ value
const match = output.match(/Path\s+REG_(?:EXPAND_SZ|SZ)\s+(.*)/i);
if (match) currentPath = match[1].trim();
} catch {
// Key might not exist — start fresh
}
// 3. Check if already present (case-insensitive, normalized comparison)
const entries = currentPath
.split(';')
.map((p) => path.normalize(p.trim()).toLowerCase())
.filter((p) => p.length > 0);
if (entries.includes(npmBinDir.toLowerCase())) {
return; // Already on PATH — no-op
}
// 4. Append to PATH (not prepend — preserve existing priority so that
// curl-bash installed versions at ~/.qoder/bin/ remain preferred)
const newPath = currentPath ? currentPath + ';' + npmBinDir : npmBinDir;
// 5. Write to registry as REG_EXPAND_SZ (preserves %variables%)
const escaped = newPath.replace(/"/g, '\\"');
execSync(
`reg add "HKCU\\Environment" /v Path /t REG_EXPAND_SZ /d "${escaped}" /f`,
{ encoding: 'utf-8', timeout: 10000, stdio: 'ignore' },
);
// 6. Broadcast WM_SETTINGCHANGE so new Explorer/shell windows pick up
// the change without requiring a reboot.
// Note: Already-open PowerShell/CMD windows will NOT refresh.
try {
const ps = [
"Add-Type -Namespace Win32 -Name NM -MemberDefinition '",
'[DllImport("user32.dll",SetLastError=true,CharSet=CharSet.Auto)]',
'public static extern IntPtr SendMessageTimeout(',
'IntPtr hWnd,uint Msg,UIntPtr wParam,string lParam,',
"uint fuFlags,uint uTimeout,out UIntPtr lpdwResult);';",
'$r=[UIntPtr]::Zero;',
'[Win32.NM]::SendMessageTimeout(',
'[IntPtr]0xFFFF,0x001A,[UIntPtr]::Zero,"Environment",',
'2,5000,[ref]$r)|Out-Null',
].join(' ');
execSync(`powershell -NoProfile -Command "${ps}"`, {
encoding: 'utf-8',
timeout: 15000,
stdio: 'ignore',
});
} catch {
// Non-fatal — PATH change is persisted in registry regardless
}
// 7. User-facing hint
console.log(
'\n \u2713 Added npm global bin directory to PATH.' +
'\n Please restart your terminal to use "qodercli".\n',
);
}
+3
-2
package.json
{
"name": "@qoder-ai/qodercli",
"version": "0.2.16",
"version": "0.2.17-beta1",
"description": "Qoder AI CLI - AI-powered coding assistant",

@@ -13,2 +13,3 @@ "author": "Qoder AI",

"bundle/",
"postinstall.cjs",
"README.md",

@@ -42,4 +43,4 @@ "LICENSE"

"scripts": {
"postinstall": "node -e \"try{require('child_process').execSync('rg --version',{stdio:'ignore'})}catch{console.log('\\n ripgrep (rg) not found. Install for best search performance: https://github.com/BurntSushi/ripgrep#installation\\n')}\""
"postinstall": "node postinstall.cjs"
}
}
bundle/qodercli.js

Sorry, the diff of this file is too big to display