milliways-infosec/AikidoSec-safe-chain
7
0
Fork 0
mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 12:10:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Wrap bun with safe-chain to block downloads of packages with malware

Browse source
This commit is contained in:
Sander Declerck 2025-10-08 15:12:06 +02:00
parent 16c76de0f3
commit 43dcba8802
No known key found for this signature in database
11 changed files with 184 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

3
test/e2e/Dockerfile
View file

@ -46,6 +46,9 @@ RUN volta install npm@${NPM_VERSION}
RUN volta install yarn@${YARN_VERSION}
RUN volta install pnpm@${PNPM_VERSION}
# Install Bun
RUN curl -fsSL https://bun.sh/install | bash
# Copy and install Safe chain
COPY --from=builder /app/*.tgz /pkgs/
RUN npm install -g /pkgs/*.tgz