You're Invited:Meet the Socket Team at RSAC and BSidesSF 2026, March 23–26.RSVP
Socket
Book a DemoSign in
Socket
Book a DemoSign in

pacote

Package Overview
Dependencies
Maintainers
6
Versions
236
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

pacote - npm Package Compare versions

Comparing version
21.3.0
 to
21.3.1
+12
-0
lib/git.js

@@ -28,2 +28,10 @@ const cacache = require('cacache')

const checkoutError = (expected, found) => {
const err = new Error(`Commit mismatch: expected SHA ${expected} and cloned HEAD ${found}`)
err.code = 'EGITCHECKOUT'
err.sha = expected
err.head = found
return err
}
class GitFetcher extends Fetcher {

@@ -263,2 +271,6 @@ constructor (spec, opts) {

)
// if we already have a resolved sha ensure it doesn't change
if (this.resolvedSha && this.resolvedSha !== sha) {
throw checkoutError(this.resolvedSha, sha)
}
this.resolvedSha = sha

@@ -265,0 +277,0 @@ if (!this.resolved) {

+1
-1
package.json
{
"name": "pacote",
"version": "21.3.0",
"version": "21.3.1",
"description": "JavaScript package downloader",

@@ -5,0 +5,0 @@ "author": "GitHub Inc.",