npm v12 Blocks Install Scripts by Default | RECATOOLS — Practical Tools. Trusted Intelligence.

A close-up of a laptop on a table, displaying a book on test-driven software with Python, set in a comfortable environment. Photo by Mikael Monjour on Pexels

DEVELOPER TOOLS · 19 Jun 2026 —

GitHub published the breaking changes for npm v12 on 9 June 2026, and the short version is that three things npm install does automatically today will become things you have to opt into. allowScripts defaults to off, --allow-git defaults to none, and --allow-remote defaults to none. The npm team frames each change as turning a behaviour that runs automatically today into "one you explicitly opt into." v12 is estimated to release in July 2026, and all three changes are already available behind warnings in npm 11.16.0 or newer — which is the window teams have to prepare before anything breaks.

What actually changes

The throughline is a shift from implicit trust to explicit opt-in across three install-time behaviours.

allowScripts defaults to off means npm install will no longer run a dependency's preinstall, install or postinstall scripts unless that package is explicitly allowed in your project. This is broader than it first sounds: it also covers the implicit node-gyp rebuild that npm runs for any package shipping a binding.gyp, so a native module with no explicit install script is still blocked. prepare scripts from git, file and link dependencies are blocked the same way.

--allow-git defaults to none means npm install will no longer resolve Git dependencies, direct or transitive, unless you allow them. The reason this is a separate control rather than a subset of script-blocking is the interesting part: a Git dependency's .npmrc could override the Git executable itself, which is a code-execution path that persisted even when you ran with --ignore-scripts. In other words, the old --ignore-scripts flag was never the complete fix teams assumed it was. This change has been available since npm 11.10.0 and was first announced on 2026-02-18.

--allow-remote defaults to none means npm install will no longer pull dependencies from remote URLs such as https tarballs, direct or transitive, unless explicitly allowed. It is available in npm 11.15.0 and later. The related --allow-file and --allow-directory flags are not changing their defaults in v12.

What will break

The breakage is concentrated in three places: native modules that compile during install, Git-sourced dependencies, and remote tarball dependencies. Native-module impact depends on the package, platform and version, but anything driven by node-gyp and a binding.gyp deserves review — packages in the better-sqlite3, bcrypt, canvas or sharp category are the kind that may need explicit allowlisting. The trade-off is real friction: projects with native dependencies, Git dependencies or private tarball flows need to inventory those paths before a CI image silently picks up npm v12.

In npm 11.16.0+, the stricter v12 behaviour is previewed through warnings, giving teams a chance to identify what would be blocked before the default actually changes. Some failures will be loud during install or test; others may surface later when a native module or generated artifact is first used. That asymmetry — caught early if you look, missed until runtime if you do not — is the migration risk to plan around.

How to get ahead of it

The preparation path is short and worth doing before July. Upgrade a test branch or CI image to npm 11.16.0 or later, run a normal install, and read the warnings. Use npm approve-scripts --allow-scripts-pending to list the packages that have scripts, approve only the ones you have reviewed with npm approve-scripts, block the rest with npm deny-scripts, and commit the resulting allowlist in package.json. Once you are on v12, only the scripts you approved keep running.

Two practical notes. Do not reach for npm approve-scripts --all to make the warnings go away — it approves everything indiscriminately and throws away the entire point of the allowlist. And because the allowlist lives in the project's package.json, it has to be committed to source control to take effect in CI; it does not carry over to global installs, which use a separate configuration.

Key Takeaways

npm v12 (estimated July 2026) flips three npm install defaults from automatic to explicit opt-in: allowScripts off, --allow-git=none, and --allow-remote=none.
allowScripts off also blocks the implicit node-gyp rebuild, so native modules with a binding.gyp are affected even without an explicit install script.
The --allow-git change closes a code-execution path (a Git dependency's .npmrc overriding the Git executable) that --ignore-scripts did not fully block.
Prepare now: upgrade a test branch or CI image to npm 11.16.0+, run npm approve-scripts --allow-scripts-pending, approve only reviewed packages, and commit the allowlist so it applies in CI.

Kenji Tanaka's VerdictAnalysis

This is overdue and correct. Running arbitrary dependency code at install time has been npm's largest convenience-for-risk trade for years, and other package managers have already moved toward stricter install-script approval models. The change itself is mechanically simple; the work is the migration, and teams that treat it as dependency hygiene rather than a version bump will come out with a smaller and clearer trust boundary around third-party code. The limitation is just as important: turning allowScripts off stops the bulk execution of unreviewed dependencies, but it does not protect you if a package you approved is later compromised, or if a maintainer's publish pipeline is hijacked. Those risks need separate controls — lockfiles and integrity checks, staged publishing, trusted or provenance-backed publishing, dependency review and version pinning. v12 narrows the install-time attack surface; it does not close it, and reading the allowlist as "now we are safe" would be the wrong lesson.

Sources & cross-checks

Primary: GitHub Changelog on staged publishing and new install-time controls for npm (22 May 2026) — staged publishing now generally available, the npm 11.15.0+ install-source flags (--allow-file, --allow-remote, --allow-directory) alongside the existing --allow-git, and the reminder that --allow-git changes its default in v12 — https://github.blog/changelog/2026-05-22-staged-publishing-and-new-install-time-controls-for-npm/
Corroborated: byteiota engineering analysis — native-module and CI breakage scenarios and ecosystem comparison; used as implementation commentary, not as a source of primary behaviour — https://byteiota.com/npm-v12-breaking-changes-what-breaks-in-july-2026/
Verified: the three default flips, version availability (11.10.0 / 11.15.0 / 11.16.0) and binding.gyp impact are traced to GitHub's own changelog; example packages and failure modes are treated as migration risks, not guaranteed breakage.

Tags: #Developer-Tools #Supply-Chain-Security #npm #Ci-cd #Nodejs

Kenji Tanaka

Developer Tools & Cloud Analyst

Kenji Tanaka covers developer tools, cloud platforms, DevOps, CI/CD, and software supply-chain topics for RECATOOLS.

View author profile → · Editorial policy

About this byline Kenji Tanaka is a RECATOOLS editorial persona for developer tools, cloud, DevOps, and software supply-chain coverage. Articles are produced and reviewed under RECATOOLS editorial supervision.

What actually changes

What will break

How to get ahead of it

Key Takeaways

Related articles

WWDC 2026 for Developers: An Expanded Foundation Models Framework and an Agentic Xcode 27

Miasma: How a Hijacked CI Pipeline Shipped Malicious npm Packages With Valid Provenance

NEXTDC Opens Peninsular Malaysia's First Tier IV Data Centre with RM2.8 Billion KL1 Launch in Petaling Jaya