Merge pull request kubernetes-client#613 from brendandburns/npm

k8s-ci-robot · web-flow · commit 6182f4d6e621 · 2021-04-02T09:30:12.000-07:00
Add a unit test to require registry.npm.js as the package registry.
diff --git a/src/package_test.ts b/src/package_test.ts
@@ -7,4 +7,21 @@ describe('package', () => {
         const v2 = require('../package-lock.json').version;
         expect(v1).to.equal(v2);
     });
+
+    it('package-lock should only reference npm', () => {
+        const validateDependencies = (deps) => {
+            if (!deps.dependencies) {
+                return;
+            }
+            for (const key in deps.dependencies) {
+                const dep = deps.dependencies[key];
+                const resolved = new URL(dep.resolved);
+                expect(resolved.hostname).to.equal('registry.npmjs.org');
+                expect(resolved.protocol).to.equal('https:');
+                validateDependencies(dep);
+            }
+        };
+        const deps = require('../package-lock.json');
+        validateDependencies(deps);
+    });
 });
