npm-registry-client
Advanced tools
Comparing version 8.4.0 to 8.5.0
module.exports = authify | ||
function authify (authed, parsed, headers, credentials) { | ||
if (credentials && credentials.otp) { | ||
this.log.verbose('request', 'passing along npm otp') | ||
headers['npm-otp'] = credentials.otp | ||
} | ||
if (credentials && credentials.token) { | ||
@@ -5,0 +9,0 @@ this.log.verbose('request', 'using bearer token for auth') |
@@ -38,6 +38,3 @@ var assert = require('assert') | ||
if (statusCode === 200) { | ||
// Work around bug in node v0.10.0 where the CryptoStream | ||
// gets stuck and never starts reading again. | ||
res.resume() | ||
if (process.version === 'v0.10.0') unstick(res) | ||
@@ -66,12 +63,2 @@ req.once('error', function (er) { | ||
function unstick (response) { | ||
response.resume = (function (orig) { | ||
return function () { | ||
var ret = orig.apply(response, arguments) | ||
if (response.socket.encrypted) response.socket.encrypted.read(0) | ||
return ret | ||
} | ||
})(response.resume) | ||
} | ||
function makeRequest (remote, params, cb) { | ||
@@ -78,0 +65,0 @@ var parsed = url.parse(remote) |
@@ -17,3 +17,4 @@ var crypto = require('crypto') | ||
process.env['CI'] === 'true' || process.env['TDDIUM'] || | ||
process.env['JENKINS_URL'] || process.env['bamboo.buildKey']) | ||
process.env['JENKINS_URL'] || process.env['bamboo.buildKey'] || | ||
process.env['GO_PIPELINE_NAME']) | ||
} | ||
@@ -20,0 +21,0 @@ |
@@ -5,3 +5,3 @@ { | ||
"description": "Client for the npm registry", | ||
"version": "8.4.0", | ||
"version": "8.5.0", | ||
"repository": { | ||
@@ -8,0 +8,0 @@ "url": "https://github.com/npm/npm-registry-client.git" |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
71800
31
1551
6