# pnpm safe defaults — registry & TLS settings
#
# In pnpm v10+, most settings live in pnpm-workspace.yaml.
# Only auth, registry, SSL, and proxy settings belong in .npmrc.
#
# Copy this file alongside pnpm-workspace.yaml to your project root.
# https://github.com/docker-security/safe-defaults

# --- TLS & Registry Security ---

# Require valid TLS certificates when connecting to registries.
# Never disable this. If you need a custom CA, use `cafile=` instead.
strict-ssl=true

# Make the default registry explicit and auditable.
registry=https://registry.npmjs.org/

# --- Optional: scoped / private registries ---

# @myorg:registry=https://npm.pkg.github.com
# //npm.pkg.github.com/:_authToken=${NPM_TOKEN}
ignore-scripts=true
