npq

🎖safely* install packages with npm or yarn by auditing them as part of your install process

APACHE-2.0 License

Downloads
3.5K
Stars
839
Committers
20
View Code on GitHub View on X
Ecosystems: npm

Bot releases are hidden (Show)

npq - v1.9.5

Published by lirantal over 6 years ago

1.9.5 (2018-02-16)

npq - v1.9.4

Published by lirantal over 6 years ago

1.9.4 (2018-02-16)

Bug Fixes

  • packageManager: simplify other package manager specifying through env variables (#15) (280047c)
npq - v1.9.3

Published by lirantal over 6 years ago

1.9.3 (2018-02-16)

Bug Fixes

  • package: update yargs to version 11.0.0 (#12) (0901de6)
npq - v1.9.2

Published by lirantal over 6 years ago

1.9.2 (2018-02-09)

npq - v1.9.1

Published by lirantal over 6 years ago

1.9.1 (2018-02-07)

Bug Fixes

  • scripts.marshall: access undefined variable (dbe7dff)
npq - v1.9.0

Published by lirantal over 6 years ago

1.9.0 (2018-01-31)

Bug Fixes

  • packageManager: the package name is optional (e58e80f)
  • scripts.marshall: use semver to coerce version format (7f2a7be)

Features

  • npq-hero: support shell pass-through alias (e7755c5)
npq - v1.8.0

Published by lirantal over 6 years ago

1.8.0 (2018-01-26)

Bug Fixes

  • marshall.errors: marshall errors would get overwritten for same package with last error (d7437f2)
  • marshalls: code cleanup for generic methods (02cabc5)

Features

  • scripts.marshall: introduce new marshall to alert from malicious scripts (9ba897d)
npq - v1.7.0

Published by lirantal over 6 years ago

1.7.0 (2018-01-19)

Bug Fixes

  • build: instruct CI to tests against node 6 (06bdc81)
  • jest: add babel presets to support async/await in node 6 for jest tests (7be3ede)
  • output: an empty line before the promopt (00e945c)
  • snyk.marshall: display a warning when unable to detect snyk (be5ee5e)

Features

  • marshalls: ability to disable marshalls altogether from running (dfd3269)
npq - v1.6.2

Published by lirantal almost 7 years ago

1.6.2 (2018-01-12)

npq - v1.6.1

Published by lirantal almost 7 years ago

1.6.1 (2018-01-12)

Bug Fixes

  • downloads.marshall: typo (c974816)
npq - v1.6.0

Published by lirantal almost 7 years ago

1.6.0 (2018-01-12)

Features

  • snyk.marshall: query for vulnerable packages (b75762a)
npq - v1.5.0

Published by lirantal almost 7 years ago

1.5.0 (2018-01-10)

Features

  • readme.marshall: recognize npm's security place-holder package (ec07c8a)
npq - v1.4.3

Published by lirantal almost 7 years ago

1.4.3 (2018-01-10)

Bug Fixes

  • packageManager: explicitly install with package manager. refactor prompt (86b9cf1)
npq - v1.4.2

Published by lirantal almost 7 years ago

1.4.2 (2018-01-08)

npq - v1.4.1

Published by lirantal almost 7 years ago

1.4.1 (2018-01-08)

Bug Fixes

  • package: update inquirer to version 5.0.0 (#10) (9684ebe)
npq - v1.4.0

Published by lirantal almost 7 years ago

1.4.0 (2017-12-28)

Features

  • packageVersionMaps: support packages and their versions (#9) (02fc1a1)
npq - v1.3.0

Published by lirantal almost 7 years ago

1.3.0 (2017-12-27)

Features

  • report: present summary report and prompt to continue/abort (#8) (b0affc9)
npq - v1.2.1

Published by lirantal almost 7 years ago

1.2.1 (2017-12-27)

Bug Fixes

  • readme.marshall: typo in detected error message (#7) (4306d88)
npq - v1.2.0

Published by lirantal almost 7 years ago

1.2.0 (2017-12-26)

Features

  • marshalls: add download and readme marshalls (#6) (76277ae)
npq - v1.1.1

Published by lirantal almost 7 years ago

1.1.1 (2017-12-25)

Bug Fixes

  • packageManager: explicitly specify packages to install (#5) (4ade518)
Package Rankings
Top 6.73% on Proxy.golang.org
Top 9.13% on Npmjs.org
Badges
Extracted from project README
npm npm codecov CI Known Vulnerabilities Security Responsible Disclosure
Related Projects
ni.zsh

Alternative `ni` written in zsh: npm/yarn/pnpm/bun with the same command

24 Mar 2023 99
corepack

Zero-runtime-dependency package acting as bridge between Node projects and their package managers

12 Mar 2020 2,533
np

A better `npm publish`

16 Aug 2015 7,461
live-plugin-manager

Plugin manager and installer for Node.JS

04 Apr 2017 232
npm-gui

Tired of the package.json dependency juggle? Meet npm-gui! We seamlessly integrate with npm, pnpm...

01 Dec 2015 647
nve

Run any command on specific Node.js versions

07 Aug 2019 692
lockfile-lint

Lint an npm or yarn lockfile to analyze and detect security issues

01 Jun 2019 770
audit-ci

Audit NPM, Yarn, PNPM, and Bun dependencies in continuous integration environments, preventing in...

13 Nov 2018 264
semantic-release-yarn

🧶 A semantic-release plugin to publish npm packages with Yarn. Comes with built-in support for mo...

25 Nov 2022 20
npm-install-to

📦 Install npm modules programmatically to given path

02 Jan 2019 5
pnpm

Fast, disk space efficient package manager

28 Jan 2016 27,544
cli

the package manager for JavaScript

05 Jul 2018 8,072
npm-publish

GitHub Action to publish to NPM

21 Jan 2020 616
qnm

cli utility for querying the node_modules directory

06 Mar 2018 1,914
package-json-scripts

A NodeJS package to test how package.json scripts are being scheduled by different package managers.

20 Jul 2017 8