Similar to how npm approve-scripts --allow-scripts-pending can be used to list packages not explicitly approved/denied it would be useful to have something to report unused approvals:
- Packages no longer installed (e.g. transitive dependencies have changed)
- Packages no longer having a postinstall script (e.g. a package that used to have one no longer does)
My current workaround is to remove the entire allowScripts and use --allow-scripts-pending again but it is a bit more tedious than it should be and is harder to automate.
Similar to how
npm approve-scripts --allow-scripts-pendingcan be used to list packages not explicitly approved/denied it would be useful to have something to report unused approvals:My current workaround is to remove the entire
allowScriptsand use--allow-scripts-pendingagain but it is a bit more tedious than it should be and is harder to automate.