Allow npm strategy to work with pnpm #57

antoine-coulon · 2022-10-23T19:06:15Z

Currently, the npm strategy only works for package-lock.json and npm-shrinkwrap.json lock files.

We could actually extend that to pnpm-lock.yaml using the npm strategy using programmatically the library provided by the pnpm organization which uses the same vulnerability registry.

It would allow us to enhance the compatibility of the npm strategy (pnpm + npm would be both supported).

The text was updated successfully, but these errors were encountered:

DGouron · 2023-01-04T16:02:05Z

Hi ! Can i work on this issue or someone is already on it ? :)

antoine-coulon · 2023-01-04T16:28:08Z

Hello ! As far as I know, nobody currently works on it, so feel free to take the subject :)

antoine-coulon changed the title ~~Allow npm strategy to work with pnpm lock files~~ Allow npm strategy to work with pnpm Oct 23, 2022

antoine-coulon added good first issue Good for newcomers enhancement New feature or request labels Oct 23, 2022

fraxken assigned DGouron Jan 4, 2023

fraxken unassigned DGouron Jun 16, 2023

fraxken self-assigned this Sep 2, 2023

fraxken mentioned this issue Sep 2, 2023

feat: implement pnpm support #188

Merged

fraxken closed this as completed Sep 3, 2023

github-project-automation bot added this to Roadmap Aug 30, 2024

github-project-automation bot moved this to Done in Roadmap Aug 30, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Allow npm strategy to work with pnpm #57

Allow npm strategy to work with pnpm #57

antoine-coulon commented Oct 23, 2022 •

edited

Loading

DGouron commented Jan 4, 2023

antoine-coulon commented Jan 4, 2023

Allow npm strategy to work with pnpm #57

Allow npm strategy to work with pnpm #57

Comments

antoine-coulon commented Oct 23, 2022 • edited Loading

DGouron commented Jan 4, 2023

antoine-coulon commented Jan 4, 2023

antoine-coulon commented Oct 23, 2022 •

edited

Loading