milliways-infosec/AikidoSec-safe-chain
7
0
Fork 0
mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 12:10:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Remove dry-run scanner for npm, relying on the proxy to block maliscious package downloads instead

Browse source
This commit is contained in:
Sander Declerck 2025-10-10 16:18:43 +02:00
parent dc4352bffb
commit 8aebb1b96b
No known key found for this signature in database
12 changed files with 29 additions and 496 deletions
Download patch file Download diff file Expand all files Collapse all files

13
packages/safe-chain/bin/aikido-npm.js
View file

@ -1,21 +1,10 @@
#!/usr/bin/env node
import { execSync } from "child_process";
import { main } from "../src/main.js";
import { initializePackageManager } from "../src/packagemanager/currentPackageManager.js";
const packageManagerName = "npm";
initializePackageManager(packageManagerName, getNpmVersion());
initializePackageManager(packageManagerName);
var exitCode = await main(process.argv.slice(2));
process.exit(exitCode);
function getNpmVersion() {
try {
return execSync("npm --version").toString().trim();
} catch {
// Default to 0.0.0 if npm is not found
// That way we don't use any unsupported features
return "0.0.0";
}
}