generated from nhcarrigan/template
Compare commits
1 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
 minori
|
f06a5620bc |
@@ -0,0 +1,25 @@
|
||||
# Package Manager Configuration
|
||||
# Force pnpm usage - breaks npm/yarn intentionally
|
||||
node-linker=pnpm
|
||||
|
||||
# Security: Disable all lifecycle scripts
|
||||
ignore-scripts=true
|
||||
enable-pre-post-scripts=false
|
||||
|
||||
# Security: Require packages to be 10+ days old before installation
|
||||
minimum-release-age=14400
|
||||
|
||||
# Security: Verify package integrity hashes
|
||||
verify-store-integrity=true
|
||||
|
||||
# Security: Enforce strict trust policies
|
||||
trust-policy=strict
|
||||
|
||||
# Security: Strict peer dependency resolution
|
||||
strict-peer-dependencies=true
|
||||
|
||||
# Performance: Use symlinks for node_modules
|
||||
symlink=true
|
||||
|
||||
# Lockfile: Ensure lockfile is not modified during install
|
||||
frozen-lockfile=false
|
||||
+1
-1
@@ -28,7 +28,7 @@
|
||||
"homepage": "https://github.com/nhcarrigan/oogie-woogie-boostie-woostie#readme",
|
||||
"devDependencies": {
|
||||
"@nhcarrigan/eslint-config": "1.1.3",
|
||||
"@nhcarrigan/prettier-config": "1.0.1",
|
||||
"@nhcarrigan/prettier-config": "3.2.0",
|
||||
"@nhcarrigan/typescript-config": "1.0.1",
|
||||
"eslint": "8.57.0",
|
||||
"prettier": "2.8.8",
|
||||
|
||||
Generated
+8
-6
@@ -31,8 +31,8 @@ importers:
|
||||
specifier: 1.1.3
|
||||
version: 1.1.3(eslint@8.57.0)(prettier@2.8.8)(typescript@5.4.5)
|
||||
'@nhcarrigan/prettier-config':
|
||||
specifier: 1.0.1
|
||||
version: 1.0.1(prettier@2.8.8)
|
||||
specifier: 3.2.0
|
||||
version: 3.2.0(prettier@2.8.8)
|
||||
'@nhcarrigan/typescript-config':
|
||||
specifier: 1.0.1
|
||||
version: 1.0.1(typescript@5.4.5)
|
||||
@@ -141,10 +141,12 @@ packages:
|
||||
peerDependencies:
|
||||
eslint: '>=8'
|
||||
|
||||
'@nhcarrigan/prettier-config@1.0.1':
|
||||
resolution: {integrity: sha512-xClbv78v+spYk0y42cKiT7VJz8bWrXw5hHVztghRI+dpMNwEk/YgNmsPDsFxLS394NcoeqAvsWYxMUEQWKceuA==}
|
||||
'@nhcarrigan/prettier-config@3.2.0':
|
||||
resolution: {integrity: sha512-AZOzwDTZfRiEinjUmqRj4gqZLYpLANhN1iMIsESxeuln+/BjGI06pINQsePIZ/I2HoPd+HGjNqu0S+Os9nHzuw==}
|
||||
engines: {node: '20', pnpm: '8'}
|
||||
deprecated: We no longer use prettier for our formatting. Please use the updated eslint-config which handles styling rules.
|
||||
peerDependencies:
|
||||
prettier: '>=2'
|
||||
prettier: '>=3'
|
||||
|
||||
'@nhcarrigan/typescript-config@1.0.1':
|
||||
resolution: {integrity: sha512-RGx6CecTDbn8KkKuRamb+mt4HfTRdWhGhkOVpgXf8oOmyHIJjJetS407OsJ8pIKefjamYXmZ1WEPNLPR0CJpXg==}
|
||||
@@ -1485,7 +1487,7 @@ snapshots:
|
||||
- supports-color
|
||||
- typescript
|
||||
|
||||
'@nhcarrigan/prettier-config@1.0.1(prettier@2.8.8)':
|
||||
'@nhcarrigan/prettier-config@3.2.0(prettier@2.8.8)':
|
||||
dependencies:
|
||||
prettier: 2.8.8
|
||||
|
||||
|
||||
@@ -1,21 +0,0 @@
|
||||
# Security
|
||||
|
||||
# Do not execute any scripts of installed packages (project scripts still run)
|
||||
ignoreDepScripts: true
|
||||
# Do not automatically run pre/post scripts (e.g. preinstall, postbuild)
|
||||
enablePrePostScripts: false
|
||||
# Only allow packages published at least 10 days ago (reduces risk of compromised packages)
|
||||
minimumReleaseAge: 14400
|
||||
# Fail if a package's trust level has decreased compared to previous releases
|
||||
trustPolicy: no-downgrade
|
||||
# Ignore trust policy for packages published more than 1 year ago (predates provenance signing)
|
||||
trustPolicyIgnoreAfter: 525960
|
||||
# Fail if there are missing or invalid peer dependencies
|
||||
strictPeerDependencies: true
|
||||
# Prevent transitive dependencies from using exotic sources (git repos, direct tarball URLs)
|
||||
blockExoticSubdeps: true
|
||||
|
||||
# Lockfile
|
||||
|
||||
# Allow the lockfile to be updated during install (set to true in CI for stricter reproducibility)
|
||||
preferFrozenLockfile: false
|
||||
Reference in New Issue
Block a user