Age | Commit message (Collapse) | Author |
|
* use latest builtins
|
|
|
|
|
|
|
|
|
|
* fix: bin script path
|
|
|
|
|
|
We bundle our deps, but we don't need to bundle docs, changelogs,
editorconfigs, test coverage reports, .github workflow definitions,
lint configurations, and all the rest, which we never use.
This cuts about 10% off of our publish artifact file size.
```
$ ls -laF npm-7.16.0-*.tgz
-rw-r--r-- 1 isaacs staff 7174497 Jun 3 13:01 npm-7.16.0-release-next.tgz
-rw-r--r-- 1 isaacs staff 6782377 Jun 3 13:00 npm-7.16.0-trim-node-modules.tgz
$ ls -laF npm-7.16.0-*.tar
-rw-r--r-- 1 isaacs staff 19020288 Jun 3 13:01 npm-7.16.0-release-next.tar
-rw-r--r-- 1 isaacs staff 17474048 Jun 3 13:00 npm-7.16.0-trim-node-modules.tar
```
PR-URL: https://github.com/npm/cli/pull/3362
Credit: @isaacs
Close: #3362
Reviewed-by: @nlf
|
|
Add workspaces support to `npm init`
- Fixes `npm exec` respecting `script-shell` option value
- Refactored `lib/exec.js` into `libnpmexec`
- Updates init-package-json@2.0.3
- Added ability to create a new workspace using the -w config
PR-URL: https://github.com/npm/cli/pull/3095
Credit: @ruyadorno
Close: #3095
Reviewed-by: @wraithgar
|
|
|
|
|
|
|
|
|
|
First self-install!
|
|
Reinstall everything from a clean node_modules and package-lock.json
state.
Re-generate list of bundleDependencies and node_modules/.gitignore with
a script that does the right thing based on actual dependency state.
|
|
|
|
|
|
|
|
|
|
Credit: @zkat
|
|
|
|
|
|
|
|
|
|
Disambiguate 'name:' prompt. (@addaleax)
Set default package name using npm rules.
Allow directories.lib to be defaulted.
|
|
Allows installation with npm-package-arg@5.
Credit: @iarna
|
|
|
|
Upgrading validate-npm-package-name resulted in init-package-json@1.9.4
needing it's own copy. That's all well and good, but it wasn't added to
git.
|
|
Update minimatch to 3.0.3 to get fix for ReDOS vuln.
Fixes: https://github.com/npm/npm/issues/13387
PR-URL: https://github.com/npm/npm/pull/13415
Credit: @isaacs
|
|
Stop using `package` for a variable, which defeats some bundlers and linters.
Credit: @adius
PR-URL: https://github.com/npm/init-package-json/pull/62
|
|
When updating the top level npm to glob@7, the subdeps that
still depended on glob@6 got new versions installed but they
weren't added to the commit. This adds them back in.
Fixes: #11633
Credit: @iarna
Reviewed-By: @othiym23
PR-URL: https://github.com/npm/npm/pull/11638
|
|
PR-URL: https://github.com/npm/npm/pull/11129
Credit: @iarna
|
|
Restore the ability to do one-shot upgrades from the versions of npm
bundled with Node 0.8 to npm@3, which simplifies using Travis with old
Node and new npm, for compatibility testing purposes. Older versions of
npm repack packages on install, which works poorly with the way npm@3
handles bundledDependencies with flat trees.
Fixes: #9668
PR-URL: https://github.com/npm/npm/pull/9981
|
|
Support new version of `validate-npm-package-license`.
|
|
Support `silent` to suppress all output from the init process.
|
|
Fixes #8716
PR-URL: https://github.com/npm/npm/pull/9269
|
|
Allow `semver@5`.
|
|
Remove browser artifacts from distribution.
|
|
|
|
"license" now supports UNLICEN[SC]ED and "SEE LICEN[SC]E IN <filename>"
courtesy @kemitchell
PR-URL: https://github.com/npm/normalize-package-data/pull/65
|
|
* get rid of redundant property on errors (@watilde)
* new tap (@isaacs)
* lowercase default name (@quarterto)
* use validate-package-license@2.0.0 with its rules:
* accept UNLICENSED | UNLICENCED
* accept "SEE LICENSE IN <file>"
PR-URL: https://github.com/npm/init-package-json/pull/46
PR-URL: https://github.com/npm/init-package-json/pull/45
PR-URL: https://github.com/npm/init-package-json/pull/48
PR-URL: https://github.com/npm/init-package-json/pull/49
|
|
Fixes #4700 and #5044
|
|
|
|
|
|
Validate the license field upon new package creation against SPDX.
|
|
Handle multiple validation errors better (@MisumiRize). (Also improved
testing tools (@michaelnisi).)
|
|
* set a default (empty) value for the author field to make `npm init -y`
work without user input
* allow at most one scope on a package name, replacing the new scope if
an existing one is available
|
|
|
|
* only add `@` to scopes if they're missing
* validate package names inside promzard
|