libnpmexec
Advanced tools
Comparing version 1.1.1 to 1.2.0
@@ -19,2 +19,3 @@ const { delimiter, dirname, resolve } = require('path') | ||
const runScript = require('./run-script.js') | ||
const isWindows = require('./is-windows.js') | ||
@@ -38,3 +39,3 @@ /* istanbul ignore next */ | ||
runPath = '.', | ||
scriptShell = undefined, | ||
scriptShell = isWindows ? process.env.ComSpec || 'cmd' : 'sh', | ||
yes = undefined, | ||
@@ -41,0 +42,0 @@ ...flatOptions |
{ | ||
"name": "libnpmexec", | ||
"version": "1.1.1", | ||
"version": "1.2.0", | ||
"files": [ | ||
@@ -5,0 +5,0 @@ "lib" |
@@ -42,3 +42,3 @@ # libnpmexec | ||
- `runPath`: Location to where to execute the script **String**, defaults to `.` | ||
- `scriptShell`: Default shell to be used **String** | ||
- `scriptShell`: Default shell to be used **String**, defaults to `sh` on POSIX systems, `process.env.ComSpec` OR `cmd` on Windows | ||
- `yes`: Should skip download confirmation prompt when fetching missing packages from the registry? **Boolean** | ||
@@ -45,0 +45,0 @@ - `registry`, `cache`, and more options that are forwarded to [@npmcli/arborist](https://github.com/npm/arborist/) and [pacote](https://github.com/npm/pacote/#options) **Object** |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
15153
12
310
0
6