generated from nhcarrigan/template
Compare commits
18 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
 minori
|
49381bcaec | ||
|
minori
|
8736490d1c | ||
|
minori
|
52305b575a | ||
|
minori
|
099531b520 | ||
|
minori
|
23e3e0df15 | ||
|
minori
|
5ca54711b7 | ||
 hikari
|
602babb4ca | ||
|
minori
|
a9d51d40ce | ||
|
minori
|
8478aa3e2f | ||
|
minori
|
f97bb33c51 | ||
|
minori
|
a4f6f0c216 | ||
|
minori
|
201408b97c | ||
|
minori
|
91b2e4c33e | ||
|
minori
|
c2d9a8ed8f | ||
|
minori
|
35a4808ca9 | ||
|
minori
|
b33ba4e6d9 | ||
|
minori
|
f7274a3e81 | ||
|
minori
|
ae045ef881 |
@@ -1,25 +0,0 @@
|
||||
# Package Manager Configuration
|
||||
# Force pnpm usage - breaks npm/yarn intentionally
|
||||
node-linker=pnpm
|
||||
|
||||
# Security: Disable all lifecycle scripts
|
||||
ignore-scripts=true
|
||||
enable-pre-post-scripts=false
|
||||
|
||||
# Security: Require packages to be 10+ days old before installation
|
||||
minimum-release-age=14400
|
||||
|
||||
# Security: Verify package integrity hashes
|
||||
verify-store-integrity=true
|
||||
|
||||
# Security: Enforce strict trust policies
|
||||
trust-policy=strict
|
||||
|
||||
# Security: Strict peer dependency resolution
|
||||
strict-peer-dependencies=true
|
||||
|
||||
# Performance: Use symlinks for node_modules
|
||||
symlink=true
|
||||
|
||||
# Lockfile: Ensure lockfile is not modified during install
|
||||
frozen-lockfile=false
|
||||
+5
-5
@@ -18,17 +18,17 @@
|
||||
"@nhcarrigan/eslint-config": "5.2.0",
|
||||
"@nhcarrigan/typescript-config": "4.0.0",
|
||||
"@types/node": "22.13.9",
|
||||
"@types/node-schedule": "2.1.7",
|
||||
"eslint": "10.0.0",
|
||||
"@types/node-schedule": "2.1.8",
|
||||
"eslint": "9.21.0",
|
||||
"typescript": "5.8.2"
|
||||
},
|
||||
"dependencies": {
|
||||
"@atproto/api": "0.14.8",
|
||||
"@atproto/api": "0.19.0",
|
||||
"@nhcarrigan/logger": "1.0.0",
|
||||
"@slack/bolt": "4.2.1",
|
||||
"@slack/oauth": "3.0.2",
|
||||
"@slack/oauth": "3.0.5",
|
||||
"discord.js": "14.18.0",
|
||||
"fastify": "5.2.1",
|
||||
"fastify": "5.7.4",
|
||||
"no-profanity": "1.5.1",
|
||||
"node-schedule": "2.1.1"
|
||||
}
|
||||
|
||||
Generated
+365
-279
File diff suppressed because it is too large
Load Diff
@@ -0,0 +1,21 @@
|
||||
# Security
|
||||
|
||||
# Do not execute any scripts of installed packages (project scripts still run)
|
||||
ignoreDepScripts: true
|
||||
# Do not automatically run pre/post scripts (e.g. preinstall, postbuild)
|
||||
enablePrePostScripts: false
|
||||
# Only allow packages published at least 10 days ago (reduces risk of compromised packages)
|
||||
minimumReleaseAge: 14400
|
||||
# Fail if a package's trust level has decreased compared to previous releases
|
||||
trustPolicy: no-downgrade
|
||||
# Ignore trust policy for packages published more than 1 year ago (predates provenance signing)
|
||||
trustPolicyIgnoreAfter: 525960
|
||||
# Fail if there are missing or invalid peer dependencies
|
||||
strictPeerDependencies: true
|
||||
# Prevent transitive dependencies from using exotic sources (git repos, direct tarball URLs)
|
||||
blockExoticSubdeps: true
|
||||
|
||||
# Lockfile
|
||||
|
||||
# Allow the lockfile to be updated during install (set to true in CI for stricter reproducibility)
|
||||
preferFrozenLockfile: false
|
||||
Reference in New Issue
Block a user