Skip to content

Commit

Permalink
deps: update corepack to 0.28.1
Browse files Browse the repository at this point in the history
PR-URL: #52946
Reviewed-By: Mohammed Keyvanzadeh <mohammadkeyvanzade94@gmail.com>
Reviewed-By: Antoine du Hamel <duhamelantoine1995@gmail.com>
Reviewed-By: Moshe Atlow <moshe@atlow.co.il>
Reviewed-By: Marco Ippolito <marcoippolito54@gmail.com>
Reviewed-By: Rafael Gonzaga <rafael.nunu@hotmail.com>
  • Loading branch information
nodejs-github-bot authored and targos committed May 15, 2024
1 parent a97ff75 commit 89f275b
Show file tree
Hide file tree
Showing 4 changed files with 28 additions and 11 deletions.
13 changes: 13 additions & 0 deletions deps/corepack/CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -1,5 +1,18 @@
# Changelog

## [0.28.1](https://github.com/nodejs/corepack/compare/v0.28.0...v0.28.1) (2024-05-10)


### Features

* add support for `COREPACK_INTEGRITY_KEYS=0` ([#470](https://github.com/nodejs/corepack/issues/470)) ([f15ebc2](https://github.com/nodejs/corepack/commit/f15ebc289ebcd6a86580f15ae3c4ef0e1be37c4b))
* update package manager versions ([#469](https://github.com/nodejs/corepack/issues/469)) ([985895b](https://github.com/nodejs/corepack/commit/985895bccb5ec68b3645c540d8500c572e1ccadb))


### Bug Fixes

* COREPACK_NPM_REGISTRY should allow for username/password auth ([#466](https://github.com/nodejs/corepack/issues/466)) ([6efa349](https://github.com/nodejs/corepack/commit/6efa34988229918debe6e881d45ba6715282f283))

## [0.28.0](https://github.com/nodejs/corepack/compare/v0.27.0...v0.28.0) (2024-04-20)


Expand Down
5 changes: 3 additions & 2 deletions deps/corepack/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -296,8 +296,9 @@ same major line. Should you need to upgrade to a new major, use an explicit
- `HTTP_PROXY`, `HTTPS_PROXY`, and `NO_PROXY` are supported through
[`node-proxy-agent`](https://github.com/TooTallNate/node-proxy-agent).

- `COREPACK_INTEGRITY_KEYS` can be set to an empty string to instruct Corepack
to skip integrity checks, or a JSON string containing custom keys.
- `COREPACK_INTEGRITY_KEYS` can be set to an empty string or `0` to
instruct Corepack to skip integrity checks, or to a JSON string containing
custom keys.

## Troubleshooting

Expand Down
19 changes: 11 additions & 8 deletions deps/corepack/dist/lib/corepack.cjs
Original file line number Diff line number Diff line change
Expand Up @@ -22417,7 +22417,7 @@ function String2(descriptor, ...args) {
}

// package.json
var version = "0.28.0";
var version = "0.28.1";

// sources/Engine.ts
var import_fs4 = __toESM(require("fs"));
Expand All @@ -22429,7 +22429,7 @@ var import_semver4 = __toESM(require_semver2());
var config_default = {
definitions: {
npm: {
default: "10.5.2+sha1.0e9b72afaf5ecf8249b2abb4b7417db6739c1475",
default: "10.7.0+sha1.c87e0bbb7a53422670e423d0198120760f67c3b7",
fetchLatestFrom: {
type: "npm",
package: "npm"
Expand Down Expand Up @@ -22466,7 +22466,7 @@ var config_default = {
}
},
pnpm: {
default: "9.0.3+sha1.ff3ad37177cbd0843e533aab13d5e40a05803b47",
default: "9.1.0+sha1.217063ce3fcbf44f3051666f38b810f1ddefee4a",
fetchLatestFrom: {
type: "npm",
package: "pnpm"
Expand Down Expand Up @@ -22530,7 +22530,7 @@ var config_default = {
package: "yarn"
},
transparent: {
default: "4.1.1+sha224.00f08619463229f8ba40c4ee90e8c2e4ced1f11c3115c26f3b98432e",
default: "4.2.2+sha224.1e50daf19e5e249a025569752c60b88005fddf57d10fcde5fc68b88f",
commands: [
[
"yarn",
Expand Down Expand Up @@ -22702,7 +22702,7 @@ ${key.key}
async function fetchLatestStableVersion(packageName) {
const metadata = await fetchAsJson2(packageName, `latest`);
const { version: version2, dist: { integrity, signatures } } = metadata;
if (process.env.COREPACK_INTEGRITY_KEYS !== ``) {
if (!shouldSkipIntegrityCheck()) {
verifySignature({
packageName,
version: version2,
Expand Down Expand Up @@ -22736,8 +22736,8 @@ async function fetch(input, init) {
if (typeof input === `string`)
input = new URL(input);
let headers = init?.headers;
const username = input.username ?? process.env.COREPACK_NPM_USERNAME;
const password = input.password ?? process.env.COREPACK_NPM_PASSWORD;
const username = input.username || process.env.COREPACK_NPM_USERNAME;
const password = input.password || process.env.COREPACK_NPM_PASSWORD;
if (username || password) {
headers = {
...headers,
Expand Down Expand Up @@ -23031,7 +23031,7 @@ async function installVersion(installTarget, locator, { spec }) {
}
if (!build[1]) {
const registry = getRegistryFromPackageManagerSpec(spec);
if (registry.type === `npm` && !registry.bin && process.env.COREPACK_INTEGRITY_KEYS !== ``) {
if (registry.type === `npm` && !registry.bin && !shouldSkipIntegrityCheck()) {
if (signatures == null || integrity == null)
({ signatures, integrity } = await fetchTarballURLAndSignature(registry.package, version2));
verifySignature({ signatures, integrity, packageName: registry.package, version: version2 });
Expand Down Expand Up @@ -23136,6 +23136,9 @@ async function runVersion(locator, installSpec, binName, args) {
process.mainModule = void 0;
process.nextTick(import_module.default.runMain, binPath);
}
function shouldSkipIntegrityCheck() {
return process.env.COREPACK_INTEGRITY_KEYS === `` || process.env.COREPACK_INTEGRITY_KEYS === `0`;
}

// sources/semverUtils.ts
var import_semver2 = __toESM(require_semver2());
Expand Down
2 changes: 1 addition & 1 deletion deps/corepack/package.json
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "corepack",
"version": "0.28.0",
"version": "0.28.1",
"homepage": "https://github.com/nodejs/corepack#readme",
"bugs": {
"url": "https://github.com/nodejs/corepack/issues"
Expand Down

0 comments on commit 89f275b

Please sign in to comment.