mirror of
https://github.com/AikidoSec/safe-chain.git
synced 2026-05-26 12:10:49 +00:00
90 lines
2.9 KiB
JSON
90 lines
2.9 KiB
JSON
{
|
|
"name": "@aikidosec/safe-chain",
|
|
"version": "1.0.0",
|
|
"scripts": {
|
|
"test": "node --test --experimental-test-module-mocks 'src/**/*.spec.js'",
|
|
"test:watch": "node --test --watch --experimental-test-module-mocks 'src/**/*.spec.js'",
|
|
"lint": "oxlint --deny-warnings",
|
|
"typecheck": "tsc --noEmit"
|
|
},
|
|
"bin": {
|
|
"aikido-npm": "bin/aikido-npm.js",
|
|
"aikido-npx": "bin/aikido-npx.js",
|
|
"aikido-yarn": "bin/aikido-yarn.js",
|
|
"aikido-pnpm": "bin/aikido-pnpm.js",
|
|
"aikido-pnpx": "bin/aikido-pnpx.js",
|
|
"aikido-bun": "bin/aikido-bun.js",
|
|
"aikido-bunx": "bin/aikido-bunx.js",
|
|
"aikido-uv": "bin/aikido-uv.js",
|
|
"aikido-pip": "bin/aikido-pip.js",
|
|
"aikido-pip3": "bin/aikido-pip3.js",
|
|
"aikido-python": "bin/aikido-python.js",
|
|
"aikido-python3": "bin/aikido-python3.js",
|
|
"safe-chain": "bin/safe-chain.js"
|
|
},
|
|
"type": "module",
|
|
"exports": {
|
|
".": {
|
|
"default": "./src/main.js"
|
|
},
|
|
"./scanning": {
|
|
"default": "./src/scanning/audit/index.js"
|
|
}
|
|
},
|
|
"keywords": [],
|
|
"author": "Aikido Security",
|
|
"license": "AGPL-3.0-or-later",
|
|
"description": "The Aikido Safe Chain wraps around the [npm cli](https://github.com/npm/cli), [npx](https://github.com/npm/cli/blob/latest/docs/content/commands/npx.md), [yarn](https://yarnpkg.com/), [pnpm](https://pnpm.io/), [pnpx](https://pnpm.io/cli/dlx), [bun](https://bun.sh/), [bunx](https://bun.sh/docs/cli/bunx), [uv](https://docs.astral.sh/uv/) (Python), and [pip](https://pip.pypa.io/) to provide extra checks before installing new packages. This tool will detect when a package contains malware and prompt you to exit, preventing npm, npx, yarn, pnpm, pnpx, bun, bunx, uv, or pip/pip3 from downloading or running the malware.",
|
|
"dependencies": {
|
|
"certifi": "14.5.15",
|
|
"chalk": "5.4.1",
|
|
"https-proxy-agent": "7.0.6",
|
|
"ini": "6.0.0",
|
|
"make-fetch-happen": "14.0.3",
|
|
"node-forge": "1.3.1",
|
|
"npm-registry-fetch": "18.0.2",
|
|
"semver": "7.7.2"
|
|
},
|
|
"devDependencies": {
|
|
"@types/ini": "^4.1.1",
|
|
"@types/make-fetch-happen": "^10.0.4",
|
|
"@types/node": "^18.19.130",
|
|
"@types/node-forge": "^1.3.14",
|
|
"@types/npm-registry-fetch": "^8.0.9",
|
|
"@types/semver": "^7.7.1",
|
|
"esbuild": "^0.27.0",
|
|
"typescript": "^5.9.3"
|
|
},
|
|
"main": "src/main.js",
|
|
"bugs": {
|
|
"url": "https://github.com/AikidoSec/safe-chain/issues"
|
|
},
|
|
"homepage": "https://github.com/AikidoSec/safe-chain#readme",
|
|
"repository": {
|
|
"type": "git",
|
|
"url": "git+https://github.com/AikidoSec/safe-chain.git",
|
|
"directory": "packages/safe-chain"
|
|
},
|
|
"pkg": {
|
|
"targets": [
|
|
"node22-linux-x64",
|
|
"node22-linux-arm64",
|
|
"node22-macos-x64",
|
|
"node22-macos-arm64",
|
|
"node22-win-x64",
|
|
"node22-win-arm64"
|
|
],
|
|
"outputPath": "dist",
|
|
"assets": [
|
|
"node_modules/certifi/**/*"
|
|
],
|
|
"scripts": [
|
|
"src/**/*.js",
|
|
"bin/**/*.js"
|
|
],
|
|
"ignore": [
|
|
"**/*.spec.js",
|
|
"test/**"
|
|
]
|
|
}
|
|
}
|