Copilot/sub pr 8 another one

[toolate28]

This pull request makes a small but important improvement to the dependency installation process in the scripts/setup.ts file. The main change enhances the safety check before removing the node_modules directory during a forced reinstall.

Safety improvements for dependency installation:

• The path validation before removing node_modules now uses resolve() to ensure the directory being deleted is exactly the intended one, reducing the risk of accidental deletion of the wrong folder.
• Added the resolve import from path to support the improved path validation.

[Copilot]

Pull request overview

This pull request aims to enhance the safety of the dependency installation process by improving path validation before removing the node_modules directory during forced reinstallation. The change replaces a simple string suffix check with absolute path resolution and comparison.

Changes:

• Added resolve import from the path module to support absolute path resolution
• Replaced endsWith("node_modules") validation with absolute path comparison using resolve()

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The comparison between resolvedPath and expectedPath is redundant. Since nodeModulesPath is already defined as join(ROOT_DIR, "node_modules") on line 101, calling resolve(nodeModulesPath) and resolve(ROOT_DIR, "node_modules") will always produce identical results. Both expressions are computing the same absolute path from the same inputs.

A more meaningful safety check would validate that the resolved path is within the project directory or matches a specific pattern, rather than comparing two computations of the same value.

[toolate28]

@copilot open a new pull request to apply changes based on this feedback