magento
[bug]: Next release will add Gomage as trusted vendor
Describe the bug
PR #4378 was merged and upon releasing the next version of PWA Studio all future npm packages released from @gomage will have additional privileges - see https://github.com/magento/pwa-studio/blob/e1041825192344932d773175001914ef456b8d07/packages/pwa-buildpack/lib/WebpackTools/ModuleTransformConfig.js#L177
https://github.com/magento/pwa-studio/blob/e1041825192344932d773175001914ef456b8d07/packages/pwa-buildpack/lib/WebpackTools/ModuleTransformConfig.js#L158C62-L158C107
Expected behavior
Only Adobe owned entities are trusted
Screenshots https://github.com/magento/pwa-studio/pull/4311#discussion_r1857402789
Possible solutions
change package name to @magento
- [x]
venia-concept - [ ]
venia-ui - [ ]
pwa-buildpack - [ ]
peregrine - [ ]
pwa-devdocs - [ ]
upward-js - [ ]
upward-spec - [ ]
create-pwa
Hi @fooman. Thank you for your report.
To speed up processing of this issue, make sure that you provided sufficient information.
Add a comment to assign the issue: @magento I am working on this
Join Magento Community Engineering Slack and ask your questions in #github channel.
![m2-assistant[bot] avatar](https://avatars.githubusercontent.com/in/27048?v=4 "Published by a pub.dev verified publisher"){kind=small}
We have already released this plugin under @magento namespace https://www.npmjs.com/package/@magento/plugin-braintree-three-d-secure
Closing this ticket as it is addressed. Please feel free to reopen in case of any query.
