# Supply-chain guardrails for npm dependency changes.
# min-release-age is measured in days and requires npm >= 11.10.0.
save-exact=true
min-release-age=1
package-lock=true
audit=true
foreground-scripts=true
