Skip to content

Commit bfa4986

Browse files
nodejs-github-botmarco-ippolito
nodejs-github-bot
authored and
marco-ippolito
committedMay 3, 2024
deps: update corepack to 0.28.0
PR-URL: #52616 Reviewed-By: Antoine du Hamel <duhamelantoine1995@gmail.com> Reviewed-By: Marco Ippolito <marcoippolito54@gmail.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Rafael Gonzaga <rafael.nunu@hotmail.com>
·
v20.19.1v20.13.0
1 parent d7434fe commit bfa4986

File tree

4 files changed

+7911
-8007
lines changed

4 files changed

+7911
-8007
lines changed
 

‎deps/corepack/CHANGELOG.md

+35
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,40 @@
11
# Changelog
22

3+
## [0.28.0](https://github.com/nodejs/corepack/compare/v0.27.0...v0.28.0) (2024-04-20)
4+
5+
6+
### ⚠ BREAKING CHANGES
7+
8+
* call `executePackageManagerRequest` directly ([#430](https://github.com/nodejs/corepack/issues/430))
9+
10+
### Bug Fixes
11+
12+
* call `executePackageManagerRequest` directly ([#430](https://github.com/nodejs/corepack/issues/430)) ([0f9b748](https://github.com/nodejs/corepack/commit/0f9b74864048d5dc150a63cc582966af0c5f363f))
13+
14+
## [0.27.0](https://github.com/nodejs/corepack/compare/v0.26.0...v0.27.0) (2024-04-19)
15+
16+
17+
### ⚠ BREAKING CHANGES
18+
19+
* attempting to download a version from the npm registry (or a mirror) that was published using the now deprecated PGP signature without providing a hash will trigger an error. Users can disable the signature verification using a environment variable.
20+
21+
### Features
22+
23+
* separate read and write operations on lastKnownGood.json ([#446](https://github.com/nodejs/corepack/issues/446)) ([c449adc](https://github.com/nodejs/corepack/commit/c449adc81822a604ee8f00ae2b53fc411535f96d))
24+
* update package manager versions ([#425](https://github.com/nodejs/corepack/issues/425)) ([1423190](https://github.com/nodejs/corepack/commit/142319056424b1e0da2bdbe801c52c5910023707))
25+
* update package manager versions ([#462](https://github.com/nodejs/corepack/issues/462)) ([56816c2](https://github.com/nodejs/corepack/commit/56816c2b7ebc9926f07048b0ec4ff6025bb4e293))
26+
* verify integrity signature when downloading from npm registry ([#432](https://github.com/nodejs/corepack/issues/432)) ([e561dd0](https://github.com/nodejs/corepack/commit/e561dd00bbacc5bc15a492fc36574fa0e37bff7b))
27+
28+
29+
### Bug Fixes
30+
31+
* add path to `package.json` in error message ([#456](https://github.com/nodejs/corepack/issues/456)) ([32a93ea](https://github.com/nodejs/corepack/commit/32a93ea4f51eb7db7dc95a16c5719695edf4b53e))
32+
* correctly set `Dispatcher` prototype for `ProxyAgent` ([#451](https://github.com/nodejs/corepack/issues/451)) ([73d9a1e](https://github.com/nodejs/corepack/commit/73d9a1e2d2f84906bf01952f1dca8adab576b7bf))
33+
* download fewer metadata from npm registry ([#436](https://github.com/nodejs/corepack/issues/436)) ([082fabf](https://github.com/nodejs/corepack/commit/082fabf8b15658e69e4fb62bb854fe9aace78b70))
34+
* hash check when downloading Yarn Berry from npm ([#439](https://github.com/nodejs/corepack/issues/439)) ([4672162](https://github.com/nodejs/corepack/commit/467216281e1719a739d0eeea370b335adfb37b8d))
35+
* Incorrect authorization prefix for basic auth, and undocumented env var ([#454](https://github.com/nodejs/corepack/issues/454)) ([2d63536](https://github.com/nodejs/corepack/commit/2d63536413971d43f570deb035845aa0bd5202f0))
36+
* re-add support for custom registries with auth ([#397](https://github.com/nodejs/corepack/issues/397)) ([d267753](https://github.com/nodejs/corepack/commit/d2677538cdb613fcab6d2a45bb07f349bdc65c2b))
37+
338
## [0.26.0](https://github.com/nodejs/corepack/compare/v0.25.2...v0.26.0) (2024-03-08)
439

540

‎deps/corepack/README.md

+6-1
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,7 @@
11
# <img src="./icon.svg" height="25" /> corepack
22

3+
[![Join us on OpenJS slack (channel #nodejs-corepack)](https://img.shields.io/badge/OpenJS%20Slack-%23nodejs--corepack-blue)](https://slack-invite.openjsf.org/)
4+
35
Corepack is a zero-runtime-dependency Node.js script that acts as a bridge
46
between Node.js projects and the package managers they are intended to be used
57
with during development. In practical terms, **Corepack lets you use Yarn, npm,
@@ -54,7 +56,7 @@ projects, `pnpm install` in pnpm projects, and `npm` in npm projects. Corepack
5456
will catch these calls, and depending on the situation:
5557

5658
- **If the local project is configured for the package manager you're using**,
57-
Corepack will silently download and cache the latest compatible version.
59+
Corepack will download and cache the latest compatible version.
5860

5961
- **If the local project is configured for a different package manager**,
6062
Corepack will request you to run the command again using the right package
@@ -294,6 +296,9 @@ same major line. Should you need to upgrade to a new major, use an explicit
294296
- `HTTP_PROXY`, `HTTPS_PROXY`, and `NO_PROXY` are supported through
295297
[`node-proxy-agent`](https://github.com/TooTallNate/node-proxy-agent).
296298

299+
- `COREPACK_INTEGRITY_KEYS` can be set to an empty string to instruct Corepack
300+
to skip integrity checks, or a JSON string containing custom keys.
301+
297302
## Troubleshooting
298303

299304
### Networking

0 commit comments

Comments
 (0)
Please sign in to comment.