11 commits

Author	SHA1	Message	Date
Reinier Criel	28d24bb6ea	Another iteration	2025-11-06 10:26:26 -08:00
Reinier Criel	548d416996	Merge remote-tracking branch 'origin/main' into feature/pypi	2025-11-03 06:49:53 -08:00
Hans Ott	ad9551ca6d	Improve types and remove async	2025-11-03 11:26:10 +01:00
Hans Ott	484cbcd960	Use @typedef {Object} X ... When you write @typedef {Object} ScanResult, you’re telling both JSDoc and TypeScript’s parser that this typedef represents an object type, not just an abstract name. This is important because it makes tools like IDEs, linters, and TypeScript’s JSDoc inference more reliable. It avoids ambiguity, especially in cases where the typedef might later be confused with something like a primitive, union, or function type. The official TypeScript documentation and the JSDoc spec both show this form as the canonical one for object shapes.	2025-11-01 13:28:11 +01:00
Hans Ott	c88b1a624f	Type check safe-chain package	2025-11-01 13:06:06 +01:00
Reinier Criel	059cba06bc	Implement e2e tests	2025-10-23 11:41:13 -07:00
Reinier Criel	1fdb15a392	Fix some border cases	2025-10-23 09:14:05 -07:00
Reinier Criel	f086aeb2be	Skeleton	2025-10-22 06:59:32 -07:00
Sander Declerck	8aebb1b96b	Remove dry-run scanner for npm, relying on the proxy to block maliscious package downloads instead	2025-10-10 16:18:43 +02:00
Sander Declerck	43dcba8802	Wrap bun with safe-chain to block downloads of packages with malware	2025-10-08 15:12:06 +02:00
Sander Declerck	7673d32912	Move safe-chain package to packages/safe-chain	2025-09-05 11:19:37 +02:00

Renamed from src/packagemanager/currentPackageManager.js (Browse further)