mirror of
https://github.com/AikidoSec/safe-chain.git
synced 2026-05-26 12:10:49 +00:00
48 lines
1.7 KiB
JSON
48 lines
1.7 KiB
JSON
{
|
|
"name": "@aikidosec/safe-chain",
|
|
"version": "1.0.0",
|
|
"scripts": {
|
|
"test": "node --test --experimental-test-module-mocks 'src/**/*.spec.js'",
|
|
"test:watch": "node --test --watch --experimental-test-module-mocks 'src/**/*.spec.js'",
|
|
"lint": "eslint ."
|
|
},
|
|
"bin": {
|
|
"aikido-npm": "bin/aikido-npm.js",
|
|
"aikido-npx": "bin/aikido-npx.js",
|
|
"aikido-yarn": "bin/aikido-yarn.js",
|
|
"aikido-pnpm": "bin/aikido-pnpm.js",
|
|
"aikido-pnpx": "bin/aikido-pnpx.js",
|
|
"safe-chain": "bin/safe-chain.js"
|
|
},
|
|
"type": "module",
|
|
"exports": {
|
|
".": {
|
|
"default": "./src/main.js"
|
|
},
|
|
"./scanning": {
|
|
"default": "./src/scanning/audit/index.js"
|
|
}
|
|
},
|
|
"keywords": [],
|
|
"author": "Aikido Security",
|
|
"license": "AGPL-3.0-or-later",
|
|
"description": "The Aikido Safe Chain wraps around the [npm cli](https://github.com/npm/cli), [npx](https://github.com/npm/cli/blob/latest/docs/content/commands/npx.md), [yarn](https://yarnpkg.com/), [pnpm](https://pnpm.io/), and [pnpx](https://pnpm.io/cli/dlx) to provide extra checks before installing new packages. This tool will detect when a package contains malware and prompt you to exit, preventing npm, npx, yarn, pnpm, or pnpx from downloading or running the malware.",
|
|
"dependencies": {
|
|
"abbrev": "^3.0.1",
|
|
"chalk": "^5.4.1",
|
|
"make-fetch-happen": "^14.0.3",
|
|
"npm-registry-fetch": "^18.0.2",
|
|
"ora": "^8.2.0",
|
|
"semver": "^7.7.2"
|
|
},
|
|
"main": "src/main.js",
|
|
"bugs": {
|
|
"url": "https://github.com/AikidoSec/safe-chain/issues"
|
|
},
|
|
"homepage": "https://github.com/AikidoSec/safe-chain#readme",
|
|
"repository": {
|
|
"type": "git",
|
|
"url": "git+https://github.com/AikidoSec/safe-chain.git",
|
|
"directory": "packages/safe-chain"
|
|
}
|
|
}
|