JSPM

Found 8 results for lifecycle-scripts

@kratex/cli

Node.js supply-chain enforcement at install and at runtime. Policy-gated lifecycle scripts, caller-chain-attributed runtime hook.

  • v0.5.0
  • 55.03
  • Published

@yarn-tool/run-script-lifecycle

Execute npm/yarn lifecycle scripts with pre/post script support - 執行 npm/yarn 生命週期腳本,支援前置/後置腳本

  • v3.0.10
  • 37.42
  • Published

scriptinel

Install script firewall for npm - default-deny lifecycle scripts with explicit, reviewable allowlists

  • v0.1.2
  • 32.45
  • Published

@foxom/hookseal

Audit npm package-lock install hooks with a small explicit allowlist.

  • v0.1.0
  • 29.05
  • Published

lockwatch

Human-readable, risk-aware diffs for package-lock.json in pull requests

  • v1.0.2
  • 25.09
  • Published

@corsaroblue/npm-guard

Scan npm packages for malicious lifecycle scripts before installing them

  • v2.1.0
  • 22.25
  • Published

installsentry

Supply-chain blast-radius visualizer that traces npm install-time lifecycle scripts, file/network access, and secret-canary reads.

  • v0.1.1
  • 21.52
  • Published

supply-chain-guardrail

npm supply chain security guardian — detects ghost dependencies, scores install script behavior, catches the axios blind spot, and blocks known malicious packages before they execute

  • v1.0.1
  • 18.29
  • Published