nodejs · aduh95 · Mar 22, 2025 · GeoffreyBooth · Mar 23, 2025 · aduh95
diff --git a/configure.py b/configure.py
@@ -61,6 +61,7 @@
 shareable_builtins = {'cjs_module_lexer/lexer': 'deps/cjs-module-lexer/lexer.js',
                      'cjs_module_lexer/dist/lexer': 'deps/cjs-module-lexer/dist/lexer.js',
                      'undici/undici': 'deps/undici/undici.js',
+                     'corepack/dist/lib/download': 'deps/corepack/dist/lib/download.js',
                      'amaro/dist/index': 'deps/amaro/dist/index.js'
 }
 

diff --git a/deps/corepack/dist/lib/download.js b/deps/corepack/dist/lib/download.js
diff --git a/lib/internal/main/install.js b/lib/internal/main/install.js
@@ -0,0 +1,43 @@
+'use strict';
+
+const {
+  ArrayPrototypeMap,
+  JSONParse,
+  ObjectEntries,
+  SafePromiseAllReturnVoid,
+  StringPrototypeSlice,
+} = primordials;
+
+const { Buffer } = require('buffer');
+const { readFileSync } = require('fs');
+const { resolve } = require('path');
+const {
+  codes: {
+    ERR_MANIFEST_INTEGRITY_MISMATCH,
+  },
+} = require('internal/errors');
+
+const {
+  prepareMainThreadExecution,
+  markBootstrapComplete,
+} = require('internal/process/pre_execution');
+
+const lockFilePath = prepareMainThreadExecution(true);
+markBootstrapComplete();
+
+const { packages } = JSONParse(readFileSync(lockFilePath, 'utf-8'));
+
+if (!packages) {
+  return;
+}
+
+const { download } = require('internal/deps/corepack/dist/lib/download');
+SafePromiseAllReturnVoid(ArrayPrototypeMap(ObjectEntries(packages), async ({ 0: path, 1: { resolved, integrity } }) => {
+  const targetDir = resolve(lockFilePath, `../${path}`);
+  const { tmpFolder, outputFile, hash } = await download(`${targetDir}/..`, resolved, 'sha512');
+  if (Buffer.from(hash, 'hex').toString('base64') !== StringPrototypeSlice(integrity, 7)) {
+    throw ERR_MANIFEST_INTEGRITY_MISMATCH();
+  }
+  const { rename } = require('fs/promises');
+  await rename(outputFile ?? tmpFolder, targetDir);
+}));
diff --git a/node.gni b/node.gni
@@ -27,6 +27,7 @@ declare_args() {
     "deps/cjs-module-lexer/dist/lexer.js",
     "deps/undici/undici.js",
     "deps/amaro/dist/index.js",
+    "deps/corepack/dist/lib/download.js",
   ]
 }
 

diff --git a/src/node.cc b/src/node.cc
@@ -366,6 +366,10 @@ MaybeLocal<Value> StartExecution(Environment* env, StartExecutionCallback cb) {
     return StartExecution(env, "internal/main/inspect");
   }
 
+  if (env->options()->install_from_lock_file) {
+    return StartExecution(env, "internal/main/install");
+  }
+
   if (per_process::cli_options->print_help) {
     return StartExecution(env, "internal/main/print_help");
   }

diff --git a/src/node_options.cc b/src/node_options.cc
@@ -554,6 +554,9 @@ EnvironmentOptionsParser::EnvironmentOptionsParser() {
             "set module type for string input",
             &EnvironmentOptions::input_type,
             kAllowedInEnvvar);
+  AddOption("--install",
+            "installs binaries defined in a lock file",
+            &EnvironmentOptions::install_from_lock_file);
   AddOption(
       "--experimental-specifier-resolution", "", NoOp{}, kAllowedInEnvvar);
   AddAlias("--es-module-specifier-resolution",

diff --git a/src/node_options.h b/src/node_options.h
@@ -260,6 +260,7 @@ class EnvironmentOptions : public Options {
   bool report_exclude_network = false;
   std::string experimental_config_file_path;
   bool experimental_default_config_file = false;
+  bool install_from_lock_file = false;
 
   inline DebugOptions* get_debug_options() { return &debug_options_; }
   inline const DebugOptions& debug_options() const { return debug_options_; }

diff --git a/test/fixtures/rc/dummy-lock-file.json b/test/fixtures/rc/dummy-lock-file.json
@@ -0,0 +1,8 @@
+{
+ "packages": {
+    "node_modules/corepack": {
+        "resolved": "https://registry.npmjs.org/corepack/-/corepack-0.32.0.tgz",
+        "integrity": "sha512-KhahVUFy7xL8OTty/ToY646hXMQhih8rnvUkA9/qnk/u4QUF2+SbQneX/zZnDxG1NiABFm5ojZCWnIv93oyhhQ=="
+    }
+ }
+}