Ability to execute random commands in the registry field.

[ghost]

Opened from zowe/zowe-cli#83.

The registry flag can be used to issue arbitrary system commands. For example:

I can shutdown your system by running this command

cli plugins install plugin-name --registry "http://registry.npmjs.org/ && shutdown /s /t 0 /f"

Note: Don't run that command as your computer will shutdown with no ability to abort it. All unsaved work will be lost.

[ghost]

See solution in #66

[ghost]

Here is the problem:

imperative/packages/imperative/src/plugins/utilities/npm-interface/install.ts

Lines 93 to 97 in 83e3cad

	const execOutput = execSync(`npm install "${npmPackage}" --prefix ${PMFConstants.instance.PLUGIN_INSTALL_LOCATION} ` +
	`-g --registry ${registry}`, {
	cwd: PMFConstants.instance.PMF_ROOT,
	stdio: pipe
	});

It should read:

 const execOutput = execSync(`npm install "${npmPackage}" --prefix "${PMFConstants.instance.PLUGIN_INSTALL_LOCATION}" ` + 
     `-g --registry "${registry}"`, { 
     cwd: PMFConstants.instance.PMF_ROOT, 
     stdio: pipe 
 });