deps: update eslint to 10.0.0

deps: update eslint to 9.39.2
2026-02-17 07:05:23 -08:00 · 2026-02-04 08:24:30 -08:00
4 changed files with 293 additions and 307 deletions
@@ -0,0 +1,25 @@
+# Package Manager Configuration
+# Force pnpm usage - breaks npm/yarn intentionally
+node-linker=pnpm
+
+# Security: Disable all lifecycle scripts
+ignore-scripts=true
+enable-pre-post-scripts=false
+
+# Security: Require packages to be 10+ days old before installation
+minimum-release-age=14400
+
+# Security: Verify package integrity hashes
+verify-store-integrity=true
+
+# Security: Enforce strict trust policies
+trust-policy=strict
+
+# Security: Strict peer dependency resolution
+strict-peer-dependencies=true
+
+# Performance: Use symlinks for node_modules
+symlink=true
+
+# Lockfile: Ensure lockfile is not modified during install
+frozen-lockfile=false
@@ -19,16 +19,16 @@
    "@nhcarrigan/typescript-config": "4.0.0",
    "@types/node": "22.13.9",
    "@types/node-schedule": "2.1.7",
-    "eslint": "9.21.0",
+    "eslint": "10.0.0",
    "typescript": "5.8.2"
  },
  "dependencies": {
-    "@atproto/api": "0.19.0",
+    "@atproto/api": "0.14.8",
    "@nhcarrigan/logger": "1.0.0",
    "@slack/bolt": "4.2.1",
    "@slack/oauth": "3.0.2",
    "discord.js": "14.18.0",
-    "fastify": "5.7.4",
+    "fastify": "5.2.1",
    "no-profanity": "1.5.1",
    "node-schedule": "2.1.1"
  }
@@ -1,21 +0,0 @@
-# Security
-
-# Do not execute any scripts of installed packages (project scripts still run)
-ignoreDepScripts: true
-# Do not automatically run pre/post scripts (e.g. preinstall, postbuild)
-enablePrePostScripts: false
-# Only allow packages published at least 10 days ago (reduces risk of compromised packages)
-minimumReleaseAge: 14400
-# Fail if a package's trust level has decreased compared to previous releases
-trustPolicy: no-downgrade
-# Ignore trust policy for packages published more than 1 year ago (predates provenance signing)
-trustPolicyIgnoreAfter: 525960
-# Fail if there are missing or invalid peer dependencies
-strictPeerDependencies: true
-# Prevent transitive dependencies from using exotic sources (git repos, direct tarball URLs)
-blockExoticSubdeps: true
-
-# Lockfile
-
-# Allow the lockfile to be updated during install (set to true in CI for stricter reproducibility)
-preferFrozenLockfile: false
Author	SHA1	Message	Date
minori	9f9d298859	deps: update eslint to 10.0.0 Node.js CI / CI (pull_request) Failing after 18s Details Security Scan and Upload / Security & DefectDojo Upload (pull_request) Successful in 1m37s Details	2026-02-17 07:05:23 -08:00
minori	c28d3d1111	deps: update eslint to 9.39.2 Node.js CI / CI (pull_request) Successful in 31s Details Security Scan and Upload / Security & DefectDojo Upload (pull_request) Successful in 2m16s Details	2026-02-04 08:24:30 -08:00