body-parsers icon indicating copy to clipboard operation
body-parsers copied to clipboard

Published 20 hours ago verified publisher icon koajs

Remove test files from the npm package

Open Havunen opened this issue 1 year ago • 2 comments

F-Secure WithSecure security scanner does not like the test file and is reporting false positive about it. Never the less, including the test file is waste of network traffic.

https://github.com/koajs/body-parsers/blob/master/test/test.js

Havunen avatar Sep 17 '24 05:09 Havunen

The dependency chain seems to be following:

"koa-better-body": "^3.3.9",

Loads "koa-body-parsers": "tunnckocore/body-parsers#patch-1"

which seems to be hosted here:

https://github.com/tunnckoCore/body-parsers/tree/patch-1

and it contains a test file shipped in the npm package.

Havunen avatar Sep 17 '24 07:09 Havunen

Never the less, including the test file is waste of network traffic.

Valid.

tunnckoCore avatar Sep 17 '24 23:09 tunnckoCore

it's not from this package so I'm closing. I set files in the package.json and checked the latest package

jonathanong avatar May 26 '25 05:05 jonathanong