jonschlinkert · aashutoshrathi · Apr 14, 2023 · Apr 14, 2023 · Apr 15, 2023 · Apr 17, 2023
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -0,0 +1,37 @@
+name: CI
+
+on:
+  pull_request:
+  push:
+    branches: [ master ]
+  workflow_dispatch:
+
+jobs:
+  tests:
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        node-version: [16.x, 18.x, 20.x]
+
+    name: Node.js ${{ matrix.node-version }}
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: Set up Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@v3
+        with:
+          node-version: ${{ matrix.node-version }}
+
+      - name: Cache dependencies
+        uses: actions/cache@v3
+        with:
+          path: ~/.npm
+          key: npm-${{ hashFiles('package-lock.json') }}
+          restore-keys: npm-
+
+      - name: Install npm dependencies
+        run: npm ci
+
+      - name: Testing
+        run: npm run test
diff --git a/.npmignore b/.npmignore
@@ -0,0 +1 @@
+package-lock.json
diff --git a/LICENSE b/LICENSE
@@ -1,6 +1,6 @@
 The MIT License (MIT)
 
-Copyright (c) 2014-2016, Jon Schlinkert
+Copyright (c) 2014-2023, Jon Schlinkert
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

diff --git a/README.md b/README.md
@@ -1,4 +1,11 @@
-# word-wrap [![NPM version](https://img.shields.io/npm/v/word-wrap.svg?style=flat)](https://www.npmjs.com/package/word-wrap) [![NPM monthly downloads](https://img.shields.io/npm/dm/word-wrap.svg?style=flat)](https://npmjs.org/package/word-wrap) [![NPM total downloads](https://img.shields.io/npm/dt/word-wrap.svg?style=flat)](https://npmjs.org/package/word-wrap) [![Linux Build Status](https://img.shields.io/travis/jonschlinkert/word-wrap.svg?style=flat&label=Travis)](https://travis-ci.org/jonschlinkert/word-wrap)
+> [!NOTE]  
+> If you came here looking for what this package is, as it showed up on top of your node_modules. This is probably a dependency of [Optionator](https://www.npmjs.com/package/optionator) in your project.
+
+> **Why this fork?**
+
+> word-wrap had a high rank vulnerability ([CVE-2023-26115](https://security.snyk.io/vuln/SNYK-JS-WORDWRAP-3149973)) which is now fixed in [this PR](https://github.com/jonschlinkert/word-wrap/pull/33) and now the main package can be used too. It was taking time to merge that PR so, some projects shifted to this fork of the project.
+
+# word-wrap [![NPM version](https://img.shields.io/npm/v/%40aashutoshrathi/word-wrap.svg?style=flat)](https://www.npmjs.com/package/%40aashutoshrathi/word-wrap) [![NPM monthly downloads](https://img.shields.io/npm/dm/%40aashutoshrathi/word-wrap.svg?style=flat)](https://npmjs.org/package/%40aashutoshrathi/word-wrap) [![NPM total downloads](https://img.shields.io/npm/dt/%40aashutoshrathi/word-wrap.svg?style=flat)](https://npmjs.org/package/%40aashutoshrathi/word-wrap) ![GitHub Workflow Status (with event)](https://img.shields.io/github/actions/workflow/status/aashutoshrathi/word-wrap/ci.yml?style=flat)
 
 > Wrap words to a specified length.
 
@@ -9,13 +16,33 @@ Please consider following this project's author, [Jon Schlinkert](https://github
 Install with [npm](https://www.npmjs.com/):
 
 ```sh
-$ npm install --save word-wrap
+$ npm install --save @aashutoshrathi/word-wrap
+```
+
+## Deep Dependencies Workaround
+
+If you are running `yarn audit` or `npm audit` and you get failures like `"word-wrap vulnerable to Regular Expression Denial of Service"` here is a work around if one of your dependencies is still using an old version of the original library.
+
+**YARN**
+
+```json
+"resolutions": {
+  "word-wrap": "@aashutoshrathi/word-wrap"
+}
+```
+
+**NPM (8 or higher)**
+
+```json
+"overrides": {
+  "word-wrap" : "@aashutoshrathi/word-wrap"
+}
 ```
 
 ## Usage
 
 ```js
-var wrap = require('word-wrap');
+var wrap = require('@aashutoshrathi/word-wrap');
 
 wrap('Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.');
 ```

diff --git a/bower.json b/bower.json
@@ -1,9 +1,9 @@
 {
   "name": "word-wrap",
   "description": "Wrap words to a specified length.",
-  "repository": "jonschlinkert/word-wrap",
+  "repository": "aashutoshrathi/word-wrap",
   "license": "MIT",
-  "homepage": "https://github.com/jonschlinkert/word-wrap",
+  "homepage": "https://github.com/aashutoshrathi/word-wrap",
   "authors": [
     "Jon Schlinkert (https://github.com/jonschlinkert)"
   ],
@@ -30,7 +30,7 @@
   ],
   "version": "1.2.1",
   "bugs": {
-    "url": "https://github.com/jonschlinkert/word-wrap/issues"
+    "url": "https://github.com/aashutoshrathi/word-wrap/issues"
   },
   "files": [
     "index.js"
@@ -57,4 +57,4 @@
     "Wolfgang Faust (http://www.linestarve.com)",
     "Zach Hale <zachhale@gmail.com> (http://zachhale.com)"
   ]
-}
+}