New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@wildberries/boilerplate-config-packager
Advanced tools
@wildberries/boilerplate-config-packager - npm Package Compare versions
Comparing version 0.0.2-beta.6 to 0.0.2-beta.7
| #!/usr/bin/env node | ||
| const path = require('path'); | ||
| const Copier = require('@mihanizm56/node-file-copier'); | ||
| const { exec, writeFile } = require('./utils/fs-promises'); | ||
| const { getConsoleArgs } = require('./utils/get-args') | ||
| const commandsFile = require('./commands/commands.json'); | ||
| const path = require("path"); | ||
| const Copier = require("@mihanizm56/node-file-copier"); | ||
| const { exec, writeFile } = require("./utils/fs-promises"); | ||
| const { getConsoleArgs } = require("./utils/get-args"); | ||
| const { | ||
| packageJsonPatchEU, | ||
| packageJsonPatchRU, | ||
| } = require("./utils/package-json-patch"); | ||
| const commandsFile = require("./commands/commands.json"); | ||
| const flags = getConsoleArgs(process.argv); | ||
| const configPath = flags.euro ? 'eu' : 'ru'; | ||
| const configPath = flags.euro ? "eu" : "ru"; | ||
| const packageJsonPatch = flags.euro ? packageJsonPatchEU : packageJsonPatchRU; | ||
| const fromFolder = path.join( | ||
| process.cwd(), | ||
| 'node_modules', | ||
| '@wildberries', | ||
| 'boilerplate-config-packager', | ||
| 'lib', | ||
| "node_modules", | ||
| "@wildberries", | ||
| "boilerplate-config-packager", | ||
| "lib", | ||
| configPath | ||
| ); | ||
| const toFolder = path.join(process.cwd(), 'config'); | ||
| const toFolder = path.join(process.cwd(), "config"); | ||
@@ -28,52 +33,27 @@ const arrayToCopy = [{ from: fromFolder, to: toFolder }]; | ||
| const addPackageJsonCommands = async () => { | ||
| const runPackage = async () => { | ||
| try { | ||
| const { scripts, devDependencies, dependencies } = commandsFile; | ||
| await exec(`rm -fr ${path.join(process.cwd(), "config")}`); | ||
| const packageJsonProjectFile = require(path.join(process.cwd(),'package.json')); // eslint-disable-line | ||
| console.log("(config-packager): start to execute"); | ||
| const newPackage = { | ||
| ...packageJsonProjectFile, | ||
| scripts, | ||
| dependencies: { | ||
| ...packageJsonProjectFile.dependencies, | ||
| ...dependencies, | ||
| }, | ||
| devDependencies: { | ||
| ...packageJsonProjectFile.devDependencies, | ||
| ...devDependencies, | ||
| }, | ||
| }; | ||
| await writeFile( | ||
| path.join(process.cwd(), 'package.json'), | ||
| JSON.stringify(newPackage, null, 2), | ||
| 'utf8', | ||
| await exec( | ||
| "npm install @wildberries/boilerplate-config-packager@0.0.2-beta.7" | ||
| ); | ||
| } catch (error) { | ||
| console.log('get an error when getting package', error); | ||
| } | ||
| }; | ||
| const runPackage = async () => { | ||
| try { | ||
| console.log('(config-packager): start to execute'); | ||
| console.log("(config-packager): start to copy"); | ||
| await exec('npm install @wildberries/boilerplate-config-packager@0.0.2-beta.6'); | ||
| console.log('(config-packager): start to copy'); | ||
| copier.activate(); | ||
| // console.log('(config-packager): start to patch package.json'); | ||
| console.log("(config-packager): start to patch package.json"); | ||
| // await addPackageJsonCommands(); todo add | ||
| await addPackageJsonCommands(); | ||
| // await exec('npm uninstall @wildberries/boilerplate-config-packager'); | ||
| await exec("npm uninstall @wildberries/boilerplate-config-packager"); | ||
| // console.log('(config-packager): start install cli packages'); | ||
| console.log("(config-packager): start install cli packages"); | ||
| // await exec('npm install'); | ||
| await exec("npm install"); | ||
| console.log('(config-packager): installed successfully'); | ||
| console.log("(config-packager): installed successfully"); | ||
| } catch (error) { | ||
@@ -80,0 +60,0 @@ console.log("error when executing the package", error); // eslint-disable-line |
| { | ||
| "name": "@wildberries/boilerplate-config-packager", | ||
| "version": "0.0.2-beta.6", | ||
| "version": "0.0.2-beta.7", | ||
| "description": "boilerplate cli-executor", | ||
@@ -5,0 +5,0 @@ "scripts": { |
New alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Fixed alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by3.63%
49948
- Lines of code
- increased by5.05%
1248
Worsened metrics
- Number of low supply chain risk alerts
- increased by33.33%
4
No dependency changes