New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

fix-has-install-script

Package Overview
Dependencies
Maintainers
1
Versions
2
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

fix-has-install-script

Report on packages missing `hasInstallScript` set in `package-lock.json`. Optionally update the lock file.

  • 1.0.2
  • latest
  • Source
  • npm
  • Socket score
Version published
Weekly downloads
6
decreased by-40%
Maintainers
1
Weekly downloads
 
Created
Source

fix-has-install-script

Tool to check if a package-lock.json needs updating following conversion to lockfileVersion 2. All dependent packages will be checked for the hasInstallScript property. If it is not present, the package.json for that package will be check for install, preinstall or postinstall properties in the scripts section.

It will report on packages missing hasInstallScript set in package-lock.json. The lock file will be updated unless the --dry-run option is specfified.

This must be run from the directory where package-lock.json exists.

Getting Started

Prerequisites

Tested on Node v16 with npm v7.

Installing

Due to low usage, fix-has-install-script can usually be run using npx:

npx fix-has-install-script

If it is installed globally there will be a fix-has-install-script command.

Run using:

fix-has-install-script

Options:

  • --dry-run report missing entries only. Do not update the lockfile. (default: false)
  • --file-in override JSON file to be read. Mostly used for testing.
  • --file JSON file to be processed. (default: "package-lock.json")

License

This project is licensed under the MIT License - see the LICENSE file for details

FAQs

Package last updated on 07 Jul 2021

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Ransomware in 2024: Record-Low Payment Rate Signals Changing Economics of Cybercrime

Security News

Ransomware in 2024: Record-Low Payment Rate Signals Changing Economics of Cybercrime

Ransomware payment rates hit an all-time low in 2024 as law enforcement crackdowns, stronger defenses, and shifting policies make attacks riskier and less profitable.

By Sarah Gooding  -  Feb 14, 2025
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc