pacote 15.1.0 → 15.1.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +3 -4
- package/lib/fetcher.js +3 -3
- package/package.json +6 -5
package/README.md
CHANGED
|
@@ -254,10 +254,9 @@ In addition to the common `package.json` fields, manifests include:
|
|
|
254
254
|
`manifest._integrity` when `dist.integrity` is not present.)
|
|
255
255
|
* `fileCount` Number of files in the tarball.
|
|
256
256
|
* `unpackedSize` Size on disk of the package when unpacked.
|
|
257
|
-
* `
|
|
258
|
-
|
|
259
|
-
|
|
260
|
-
`https://registry.npmjs.org`.)
|
|
257
|
+
* `signatures` Signatures of the shasum. Includes the keyid that
|
|
258
|
+
correlates to a [`key from the npm
|
|
259
|
+
registry`](https://registry.npmjs.org/-/npm/v1/keys)
|
|
261
260
|
|
|
262
261
|
## Packuments
|
|
263
262
|
|
package/lib/fetcher.js
CHANGED
|
@@ -425,7 +425,7 @@ class FetcherBase {
|
|
|
425
425
|
return ((mode | m) & ~this.umask) | exe | 0o600
|
|
426
426
|
}
|
|
427
427
|
|
|
428
|
-
[_tarxOptions] ({ cwd
|
|
428
|
+
[_tarxOptions] ({ cwd }) {
|
|
429
429
|
const sawIgnores = new Set()
|
|
430
430
|
return {
|
|
431
431
|
cwd,
|
|
@@ -460,9 +460,9 @@ class FetcherBase {
|
|
|
460
460
|
log.warn('tar', code, msg)
|
|
461
461
|
log.silly('tar', code, msg, data)
|
|
462
462
|
},
|
|
463
|
-
uid,
|
|
464
|
-
gid,
|
|
465
463
|
umask: this.umask,
|
|
464
|
+
// always ignore ownership info from tarball metadata
|
|
465
|
+
preserveOwner: false,
|
|
466
466
|
}
|
|
467
467
|
}
|
|
468
468
|
}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "pacote",
|
|
3
|
-
"version": "15.1.
|
|
3
|
+
"version": "15.1.2",
|
|
4
4
|
"description": "JavaScript package downloader",
|
|
5
5
|
"author": "GitHub Inc.",
|
|
6
6
|
"bin": {
|
|
@@ -27,7 +27,7 @@
|
|
|
27
27
|
"devDependencies": {
|
|
28
28
|
"@npmcli/arborist": "^6.0.0 || ^6.0.0-pre.0",
|
|
29
29
|
"@npmcli/eslint-config": "^4.0.0",
|
|
30
|
-
"@npmcli/template-oss": "4.
|
|
30
|
+
"@npmcli/template-oss": "4.14.1",
|
|
31
31
|
"hosted-git-info": "^6.0.0",
|
|
32
32
|
"mutate-fs": "^2.1.1",
|
|
33
33
|
"nock": "^13.2.4",
|
|
@@ -59,7 +59,7 @@
|
|
|
59
59
|
"promise-retry": "^2.0.1",
|
|
60
60
|
"read-package-json": "^6.0.0",
|
|
61
61
|
"read-package-json-fast": "^3.0.0",
|
|
62
|
-
"sigstore": "^1.
|
|
62
|
+
"sigstore": "^1.3.0",
|
|
63
63
|
"ssri": "^10.0.0",
|
|
64
64
|
"tar": "^6.1.11"
|
|
65
65
|
},
|
|
@@ -72,7 +72,8 @@
|
|
|
72
72
|
},
|
|
73
73
|
"templateOSS": {
|
|
74
74
|
"//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
|
|
75
|
-
"version": "4.
|
|
76
|
-
"windowsCI": false
|
|
75
|
+
"version": "4.14.1",
|
|
76
|
+
"windowsCI": false,
|
|
77
|
+
"publish": "true"
|
|
77
78
|
}
|
|
78
79
|
}
|