I think it could. Just remove "preinstall": "npx only-allow pnpm",, so the person working with the repo could use npm to install dependencies.
And also, in that case it would make sense to keep packages-lock.json as well.
Note: these are my assumptions. I'm not a maintainer of pnpm and may not know some pitfalls.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Can pnmp be set up to allow fall back to npm, say if someone on a locked down/limited device (IoT or something) wants to pull a repo?
I think it could. Just remove
"preinstall": "npx only-allow pnpm",, so the person working with the repo could usenpmto install dependencies.And also, in that case it would make sense to keep
packages-lock.jsonas well.Note: these are my assumptions. I'm not a maintainer of
pnpmand may not know some pitfalls.