Skip to content

Bump to Yarn v4 #293

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 1 commit into
base: main
Choose a base branch
from
Draft

Bump to Yarn v4 #293

wants to merge 1 commit into from

Conversation

mcmire
Copy link
Contributor

@mcmire mcmire commented Mar 3, 2025
edited
Loading

Also add @lavamoat/allow-scripts and @lavamoat/preinstall-always-fail, as our Yarn setup will now call allow-scripts automatically.

This aligns this repo with the module template.

@mcmire
Bump to Yarn v4
ba47b89 
Also add `@lavamoat/allow-scripts` and
`@lavamoat/preinstall-always-fail`, as our Yarn setup will now call
`allow-scripts` automatically.

This aligns this repo with the module template.
@mcmire mcmire requested a review from a team as a code owner March 3, 2025 18:36
@socket-security Socket Security
Copy link

New, updated, and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@isaacs/cliui@8.0.2 None +6 171 kB isaacs
npm/@isaacs/fs-minipass@4.0.1 filesystem 0 101 kB isaacs
npm/@lavamoat/aa@4.3.1 None 0 0 B
npm/@lavamoat/allow-scripts@3.3.1 None 0 0 B
npm/@lavamoat/preinstall-always-fail@2.1.0 None 0 3.53 kB lmbot
npm/@npmcli/agent@2.2.2 environment, network 0 17.7 kB npm-cli-ops
npm/@npmcli/fs@3.1.1 filesystem 0 26.5 kB lukekarrys
npm/@npmcli/git@5.0.8 environment, filesystem 0 23 kB npm-cli-ops
npm/@npmcli/node-gyp@3.0.0 filesystem 0 1.87 kB lukekarrys
npm/@npmcli/package-json@5.2.1 filesystem 0 39.5 kB npm-cli-ops
npm/@npmcli/promise-spawn@7.0.2 environment, shell 0 12.2 kB npm-cli-ops
npm/@npmcli/run-script@8.1.0 environment 0 18.3 kB npm-cli-ops
npm/@pkgjs/parseargs@0.11.0 None 0 74.2 kB oss-bot
npm/abbrev@2.0.0 None 0 4.83 kB lukekarrys
npm/agent-base@7.1.3 network 0 31.5 kB tootallnate
npm/aggregate-error@3.1.0 None 0 6.69 kB sindresorhus
npm/bin-links@4.0.4 filesystem +1 24.2 kB npm-cli-ops
npm/brace-expansion@2.0.1 None 0 11.5 kB juliangruber
npm/cacache@18.0.4 filesystem 0 63.7 kB npm-cli-ops
npm/chownr@2.0.0 filesystem 0 5.75 kB isaacs
npm/clean-stack@2.2.0 None 0 5.51 kB sindresorhus
npm/cmd-shim@6.0.3 filesystem 0 12.2 kB npm-cli-ops
npm/cross-spawn@7.0.37.0.6 None +2 37 kB satazor
npm/eastasianwidth@0.2.0 None 0 13.6 kB komagata
npm/encoding@0.1.13 None 0 7.12 kB andris
npm/env-paths@2.2.1 None 0 10.2 kB sindresorhus
npm/err-code@2.0.3 None 0 12.3 kB achingbrain
npm/exponential-backoff@3.1.2 None 0 55.2 kB aboissinot, agong-coveo, coveo-organization, ...13 more
npm/foreground-child@3.3.1 None 0 68.3 kB bcoe, coreyfarrell, isaacs
npm/fs-minipass@2.1.0 filesystem 0 14.1 kB isaacs
npm/function-bind@1.1.11.1.2 None 0 31.4 kB ljharb
npm/graceful-fs@4.2.10, 4.2.64.2.11 None 0 32.5 kB isaacs
npm/hasown@2.0.2 None 0 8.77 kB ljharb
npm/hosted-git-info@7.0.2 None 0 26.6 kB npm-cli-ops
npm/http-cache-semantics@4.1.1 None 0 35.9 kB kornel
npm/http-proxy-agent@7.0.2 network 0 23.3 kB tootallnate
npm/https-proxy-agent@7.0.6 network Transitive: environment +1 78 kB tootallnate
npm/iconv-lite@0.6.3 None 0 349 kB ashtuchkin
npm/ini@4.1.3 None 0 12.1 kB npm-cli-ops
npm/ip-address@9.0.5 None 0 177 kB beaugunderson
npm/is-core-module@2.11.02.16.1 None 0 33.5 kB ljharb
npm/is-lambda@1.0.1 None 0 2.94 kB watson
npm/isexe@3.1.1 environment, filesystem 0 43 kB isaacs
npm/jackspeak@3.4.3 environment 0 297 kB isaacs
npm/jsbn@1.1.0 None 0 46.9 kB andyperlitch
npm/json-parse-even-better-errors@3.0.2 None 0 9.94 kB npm-cli-ops
npm/lru-cache@10.4.3 None 0 804 kB isaacs
npm/make-fetch-happen@13.0.1 network +1 339 kB npm-cli-ops
npm/minimatch@9.0.5 environment 0 435 kB isaacs
npm/minipass-collect@2.0.1 None 0 4.96 kB isaacs
npm/minipass-fetch@3.0.5 environment, network +1 64.2 kB npm-cli-ops
npm/minipass-flush@1.0.5 None +1 51.9 kB isaacs
npm/minipass-pipeline@1.2.4 None 0 7 kB isaacs
npm/minipass-sized@1.0.3 None 0 124 kB isaacs
npm/mkdirp@1.0.4 environment, filesystem 0 19.1 kB isaacs
npm/ms@2.1.22.1.3 None 0 6.72 kB styfle
npm/negotiator@0.6.4 None 0 28.6 kB blakeembrey
npm/node-gyp@10.3.1 environment, shell +4 2.44 MB nodejs-foundation
npm/nopt@7.2.1 None 0 26.2 kB npm-cli-ops
npm/normalize-package-data@6.0.2 None 0 28.2 kB npm-cli-ops
npm/npm-install-checks@6.3.0 None 0 6.21 kB npm-cli-ops
npm/npm-package-arg@11.0.3 None 0 19.2 kB npm-cli-ops
npm/npm-pick-manifest@9.1.0 None 0 16.5 kB npm-cli-ops
npm/p-map@4.0.0 None 0 8.69 kB sindresorhus
npm/package-json-from-dist@1.0.1 None 0 36.5 kB isaacs
npm/path-scurry@1.11.1 filesystem 0 535 kB isaacs
npm/promise-inflight@1.0.1 None 0 3.04 kB iarna
npm/promise-retry@2.0.1 None 0 15.6 kB achingbrain
npm/read-cmd-shim@4.0.0 filesystem 0 5.16 kB lukekarrys
npm/resolve@1.22.11.22.8 None 0 145 kB ljharb
npm/retry@0.12.0 None 0 32.2 kB tim-kos
npm/rimraf@5.0.10 environment, filesystem 0 281 kB isaacs
npm/semver@7.3.57.7.1 None 0 96.7 kB npm-cli-ops
npm/signal-exit@4.1.0 None 0 77 kB isaacs
npm/smart-buffer@4.2.0 None 0 138 kB joshglazebrook
npm/socks-proxy-agent@8.0.5 network 0 25.5 kB tootallnate
npm/socks@2.8.4 None 0 156 kB joshglazebrook
npm/spdx-correct@3.2.0 None 0 23.4 kB kemitchell
npm/spdx-exceptions@2.5.0 None 0 3.47 kB kemitchell
npm/spdx-expression-parse@3.0.1 None 0 11.8 kB kemitchell
npm/spdx-license-ids@3.0.21 None 0 12.9 kB kemitchell, shinnn
npm/sprintf-js@1.1.3 None 0 39.9 kB alexei
npm/ssri@10.0.6 None 0 38.7 kB npm-cli-ops
npm/string-width-cjs@4.2.2 None 0 0 B
npm/strip-ansi-cjs@6.0.1 None 0 0 B
npm/tar@6.2.1 environment, filesystem +1 236 kB isaacs
npm/type-fest@4.30.0 None 0 400 kB sindresorhus
npm/unique-filename@3.0.0 None 0 3.41 kB lukekarrys
npm/unique-slug@4.0.0 None 0 2.58 kB lukekarrys
npm/validate-npm-package-license@3.0.4 None 0 16.6 kB kemitchell
npm/validate-npm-package-name@5.0.1 unsafe 0 7.77 kB npm-cli-ops
npm/which@4.0.0 environment 0 7.5 kB npm-cli-ops
npm/wrap-ansi-cjs@7.0.0 None 0 0 B
npm/write-file-atomic@5.0.1 filesystem 0 12.2 kB npm-cli-ops
npm/yargs@17.6.217.7.2 None 0 292 kB oss-bot

🚮 Removed packages: npm/has@1.0.3

View full report↗︎

Have feedback? Participate in our User Experience Survey 📊

@socket-security Socket Security
Copy link

Report is too large to display inline.
View full report↗︎

Next steps

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

  • @SocketSecurity ignore npm/npm-normalize-package-bin@3.0.1
  • @SocketSecurity ignore npm/abbrev@2.0.0
  • @SocketSecurity ignore npm/write-file-atomic@5.0.1
  • @SocketSecurity ignore npm/@npmcli/node-gyp@3.0.0
  • @SocketSecurity ignore npm/read-cmd-shim@4.0.0
  • @SocketSecurity ignore npm/http-proxy-agent@7.0.2
  • @SocketSecurity ignore npm/@npmcli/agent@2.2.2
  • @SocketSecurity ignore npm/make-fetch-happen@13.0.1
  • @SocketSecurity ignore npm/@npmcli/promise-spawn@7.0.2
  • @SocketSecurity ignore npm/minipass-fetch@3.0.5
  • @SocketSecurity ignore npm/validate-npm-package-name@5.0.1
  • @SocketSecurity ignore npm/@lavamoat/preinstall-always-fail@2.1.0
  • @SocketSecurity ignore npm/negotiator@1.0.0
  • @SocketSecurity ignore npm/@npmcli/agent@3.0.0
  • @SocketSecurity ignore npm/unique-slug@5.0.0
  • @SocketSecurity ignore npm/abbrev@3.0.0
  • @SocketSecurity ignore npm/@npmcli/fs@4.0.0
  • @SocketSecurity ignore npm/unique-filename@4.0.0
  • @SocketSecurity ignore npm/negotiator@0.6.4
  • @SocketSecurity ignore npm/make-fetch-happen@14.0.3
  • @SocketSecurity ignore npm/node-gyp@10.3.1
  • @SocketSecurity ignore npm/https-proxy-agent@7.0.6
  • @SocketSecurity ignore npm/socks-proxy-agent@8.0.5
  • @SocketSecurity ignore npm/agent-base@7.1.3
  • @SocketSecurity ignore npm/semver@7.3.8

@mcmire mcmire marked this pull request as draft March 3, 2025 18:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@mcmire