@majordigital/create-acorn 1.6.4 → 1.6.6

package/bin/create-acorn.mjs

@@ -118,7 +118,7 @@ async function setupPreDeploy() {
 
   console.log('Installing pre-deploy tools (Lighthouse, Playwright, linkinator)...');
   await runCommand('npm', ['install', '--save-dev', '--legacy-peer-deps',
-    'lighthouse', 'chrome-launcher', 'playwright', 'linkinator'
+    'lighthouse', 'chrome-launcher', 'playwright', 'linkinator@^7'
   ]);
   console.log('');
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@majordigital/create-acorn",
-  "version": "1.6.4",
+  "version": "1.6.6",
   "description": "Interactive starter CLI for Acorn with Storyblok/Prismic/DatoCMS, TypeScript, and Tailwind.",
   "bin": {
     "create-acorn": "bin/create-acorn.mjs",

package/template/scripts/check-links.mjs

@@ -28,10 +28,13 @@ const concurrency = isLocalhost ? 2 : 5;
 
 // Support Netlify Basic Auth (password-protected preview deploys).
 // Set NETLIFY_AUTH=user:password in your environment before running.
+// NOTE: requires linkinator >=7 (the `headers` option is applied to every
+// fetch). Credentials are sent via an Authorization header, not embedded in
+// the URL — Node's fetch (undici) rejects URLs that contain credentials.
 const netlifyAuth = process.env.NETLIFY_AUTH;
-const crawlUrl = netlifyAuth
-    ? baseUrl.replace(/^(https?:\/\/)/, `$1${netlifyAuth}@`)
-    : baseUrl;
+const headers = netlifyAuth
+    ? { Authorization: `Basic ${Buffer.from(netlifyAuth).toString("base64")}` }
+    : {};
 
 const checker = new LinkChecker();
 
@@ -49,10 +52,11 @@ console.log(`Concurrency: ${concurrency}`);
 console.log("This may take several minutes...\n");
 
 const result = await checker.check({
-    path: crawlUrl,
+    path: baseUrl,
     recurse: true,
     concurrency,
     timeout: 30000,
+    headers,
     linksToSkip: [
         // Skip external links to avoid false positives from rate limiting
         `^(?!(${baseUrl.replace(/[.*+?^${}()|[\]\\]/g, "\\$&")}))`,