@actions/tool-cache - npm Package Compare versions

Comparing version 1.3.4 to 1.3.5

lib/tool-cache.js

@@ -143,5 +143,6 @@ "use strict";
             try {
+                const logLevel = core.isDebug() ? '-bb1' : '-bb0';
                 const args = [
                     'x',
-                    '-bb1',
+                    logLevel,
                     '-bd',
@@ -223,2 +224,5 @@ '-sccUTF-8',
         const args = [flags];
+        if (core.isDebug() && !flags.includes('v')) {
+            args.push('-v');
+        }
         let destArg = dest;
@@ -273,3 +277,3 @@ let fileArg = file;
         // run powershell
-        const powershellPath = yield io.which('powershell');
+        const powershellPath = yield io.which('powershell', true);
         const args = [
@@ -290,4 +294,8 @@ '-NoLogo',
     return __awaiter(this, void 0, void 0, function* () {
-        const unzipPath = yield io.which('unzip');
-        yield exec_1.exec(`"${unzipPath}"`, [file], { cwd: dest });
+        const unzipPath = yield io.which('unzip', true);
+        const args = [file];
+        if (!core.isDebug()) {
+            args.unshift('-q');
+        }
+        yield exec_1.exec(`"${unzipPath}"`, args, { cwd: dest });
     });
@@ -294,0 +302,0 @@ }

package.json

 {
   "name": "@actions/tool-cache",
-  "version": "1.3.4",
+  "version": "1.3.5",
   "description": "Actions tool-cache lib",
@@ -10,3 +10,3 @@ "keywords": [
   ],
-  "homepage": "https://github.com/actions/toolkit/tree/master/packages/exec",
+  "homepage": "https://github.com/actions/toolkit/tree/master/packages/tool-cache",
   "license": "MIT",
@@ -40,3 +40,3 @@ "main": "lib/tool-cache.js",
   "dependencies": {
-    "@actions/core": "^1.2.0",
+    "@actions/core": "^1.2.3",
     "@actions/exec": "^1.0.0",
@@ -43,0 +43,0 @@ "@actions/http-client": "^1.0.8",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

89811

increased by0.7%

Lines of code

668

increased by1.21%

Worsened metrics

Number of medium supply chain risk alerts

2

increased by100%

Dependency changes

• Updated@actions/core@^1.2.3