# Package Manager Configuration
# Force pnpm usage - breaks npm/yarn intentionally
node-linker=pnpm

# Security: Disable all lifecycle scripts
ignore-scripts=true
enable-pre-post-scripts=false

# Security: Require packages to be 10+ days old before installation
minimum-release-age=14400

# Security: Verify package integrity hashes
verify-store-integrity=true

# Security: Enforce strict trust policies
trust-policy=strict

# Security: Strict peer dependency resolution
strict-peer-dependencies=true

# Performance: Use symlinks for node_modules
symlink=true

# Lockfile: Ensure lockfile is not modified during install
frozen-lockfile=false