rfcs
rfcs copied to clipboard
npm
Public change requests/proposals & ideation
## Motivation ("The Why") It's a safer default. The cost of removing one line for those intending to publish a package is near-zero. The cost of accidentally publishing a package...
## Motivation ("The Why") `npm link` works. `npm unlink` doesn't. ### Example ```sh $ npm unlink npm ERR! Must provide a package name to remove npm ERR! A complete log...
Create a mechanism that allows users to create package-locks that can be used with different custom registries. [link to rfc](https://github.com/everett1992/rfcs/blob/main/accepted/0000-resolved-registry-override.md)
`npm copy ` copies the current project's files and dependencies to `destination` When deploying a project (`COPY` into a docker image, `zip` into an archive) non production dependencies and files...
Provide a mechanism for users to specify reusable version specifications for multiple dependencies. For example, many dependencies are published with the same version. This RFC introduces a syntax for specifying...
**Edit:** I simplified this section and incorporated all comments and concerns up to this point. In hopes that this can finally proceed to be implemented. ## Motivation It is now...
## Motivation ("The Why") It is convenient when you can press tab in the console and get a list of commands. This is how almost all console programs work. ###...
Install scripts that can run just about anything by default pose some pretty serious security considerations, and these are inreasingly moving out of the theoretical realm and becoming actively exploited....
## Trust system root CA certificates First RFC submission ## References Related to https://github.com/npm/feedback/discussions/497
# What / Why It would be ideal to provide license tooling within the CLI itself rather than leaving it to ecosystem OSS tooling or enterprise-grade registry tools/services to implement...
