Minor Changes
-
Adding
trustPolicyIgnoreAfterallows you to ignore trust policy checks for packages published more than a specified time ago#10352. -
Added project registry for global virtual store prune support.
Projects using the store are now registered via symlinks in
{storeDir}/v10/projects/. This enablespnpm store pruneto track which packages are still in use by active projects and safely remove unused packages from the global virtual store. -
Semi-breaking. Changed the location of unscoped packages in the virtual global store. They will now be stored under a directory named
@to maintain a uniform 4-level directory depth. -
Added mark-and-sweep garbage collection for global virtual store.
pnpm store prunenow removes unused packages from the global virtual store'slinks/directory. The algorithm:- Scans all registered projects for symlinks pointing to the store
- Walks transitive dependencies to mark reachable packages
- Removes any package directories not marked as reachable
This includes support for workspace monorepos - all
node_modulesdirectories within a project (including those in workspace packages) are scanned.
Patch Changes
- Throw an error if the value of the
tokenHelperor<url>:tokenHelpersetting contains an environment variable. - Git dependencies with build scripts should respect the
dangerouslyAllowAllBuildssettings #10376. - Skip the package manager check when running with --global and a project packageManager is configured, and warn that the check is skipped.
pnpm store pruneshould not fail if the dlx cache directory has files, not only directories #10384- Fixed a bug (#9759) where
pnpm addwould incorrectly modify a catalog entry inpnpm-workspace.yamlto its exact version.
Platinum Sponsors
|
|
Gold Sponsors
|
|
|
|
|
|
|