New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →

Sign in Demo Install

Sign in Demo Install

@yarnpkg/core

Package Overview

Advanced tools

Install Socket

Detect and block malicious and high-risk dependencies

@yarnpkg/core - npm Package Compare versions

Comparing version 4.0.0-rc.4 to 4.0.0-rc.5

6

lib/scriptUtils.js

		@@ -200,2 +200,4 @@ "use strict";
		stdout.write(`\n`);
		// Remove environment variables that limit the install to just production dependencies
		delete env.NODE_ENV;
		// Run an install; we can't avoid it unless we inspect the
		@@ -264,2 +266,6 @@ // package.json, which I don't want to do to keep the codebase
		delete env.npm_config_user_agent;
		// Remove environment variables that limit the install to just production dependencies
		delete env.npm_config_production;
		delete env.NPM_CONFIG_PRODUCTION;
		delete env.NODE_ENV;
		// We can't use `npm ci` because some projects don't have npm
		@@ -266,0 +272,0 @@ // lockfiles that are up-to-date. Hopefully npm won't decide

18

package.json

		{
		"name": "@yarnpkg/core",
		"version": "4.0.0-rc.4",
		"version": "4.0.0-rc.5",
		"license": "BSD-2-Clause",
		@@ -11,6 +11,6 @@ "main": "./lib/index.js",
		"@types/treeify": "^1.0.0",
		"@yarnpkg/fslib": "^3.0.0-rc.4",
		"@yarnpkg/libzip": "^3.0.0-rc.4",
		"@yarnpkg/parsers": "^3.0.0-rc.4",
		"@yarnpkg/shell": "^4.0.0-rc.4",
		"@yarnpkg/fslib": "^3.0.0-rc.5",
		"@yarnpkg/libzip": "^3.0.0-rc.5",
		"@yarnpkg/parsers": "^3.0.0-rc.5",
		"@yarnpkg/shell": "^4.0.0-rc.5",
		"camelcase": "^5.3.1",
		@@ -45,6 +45,6 @@ "chalk": "^3.0.0",
		"@types/tunnel": "^0.0.0",
		"@yarnpkg/cli": "^4.0.0-rc.4",
		"@yarnpkg/plugin-link": "^3.0.0-rc.4",
		"@yarnpkg/plugin-npm": "^3.0.0-rc.4",
		"@yarnpkg/plugin-pnp": "^4.0.0-rc.4",
		"@yarnpkg/cli": "^4.0.0-rc.5",
		"@yarnpkg/plugin-link": "^3.0.0-rc.5",
		"@yarnpkg/plugin-npm": "^3.0.0-rc.5",
		"@yarnpkg/plugin-pnp": "^4.0.0-rc.5",
		"esbuild": "npm:esbuild-wasm@^0.11.20",
		@@ -51,0 +51,0 @@ "rollup": "^2.59.0",