-
Notifications
You must be signed in to change notification settings - Fork 3.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[FEATURE] Add audit resolve/fix management #525
Comments
(just documenting some of the discussions from chats and video conferences) We should def decouple the interactivity from the audit fix management, it'd be nice to create some sort of Ideas:
As you can see from the example above, The legacy |
Open RFC: npm/rfcs#18 |
Existing userland solution: https://www.npmjs.com/package/npm-audit-resolver |
Having this in place it would be trivial to have userland modules that uses https://github.com/ruyadorno/ipt to take the |
Hi, npm-audit-resolver author here. I've refactored the resolver and extracted a core package. There might be some work left to perfect the API it exposes, but the core package is designated to be used in The interactive command would remain userland as-is. That was made very clear in the RFC and other communication - npm cli doesn't want to be interactive. What do you think? |
closing this in favor of continuing the conversation over at npm/rfcs#18 |
What / Why
Would be great to have an interactive update command for
npm audit fix
Where
npm audit fix
How
Current Behavior
Expected Behavior
References
The text was updated successfully, but these errors were encountered: