0.1.8 • Published 2 years ago

manifest-confusion-check v0.1.8

Weekly downloads
-
License
-
Repository
github
Last release
2 years ago

manifest-confusion-check

Manifest Confusion detecter.

Ref: https://blog.vlt.sh/blog/the-massive-hole-in-the-npm-ecosystem

Check npm registry manifests vs dependencies in node_modules, yarn.lock and/or package-lock.json.

For details of what is checked, see the source code.

Usage

npx manifest-confusion-check

TODO

  • implement yarn.lock support
  • implement package-lock.json version 1 support
  • add error codes
  • process.exit(1) if there are errors
  • implement duplicate key checks
  • add licence
  • on release, update CHANGELOG.md

See Also

darcyclarke-manifest-pkgfetch-retrynode-fetchtest_for_manifest_confusion1
@everything-registry/sub-chunk-2127
0.1.8

2 years ago

0.1.7

2 years ago

0.1.6

2 years ago

0.1.5

2 years ago

0.1.4

2 years ago

0.1.3

2 years ago

0.1.2

2 years ago

0.1.1

2 years ago

0.1.0

2 years ago