@appland/appmap-agent-js - npm Package Compare versions

Comparing version 1.0.2 to 2.0.0

CHANGELOG.md

@@ -0,1 +1,28 @@
+# [2.0.0](https://github.com/applandinc/appmap-agent-js/compare/v1.0.2...v2.0.0) (2021-04-04)
+
+
+### Bug Fixes
+
+* added current env variables to spawn inline client which is necessary for PATH) ([dc4224e](https://github.com/applandinc/appmap-agent-js/commit/dc4224ec14de9b53eed4228432fecf855cddb9ec))
+* correct some erroneous appmap methods ([4361823](https://github.com/applandinc/appmap-agent-js/commit/43618230c997562d49b4710b08c8f32a07f4514b))
+* fix inversion argument between client and server for instrument query and lint-related fixes ([2148505](https://github.com/applandinc/appmap-agent-js/commit/21485053534e116d37597662a6a54f7ea6f2d67c))
+* forgot some files in the big refactoring commit ([aef71ed](https://github.com/applandinc/appmap-agent-js/commit/aef71ed1fe61b8396d8dcf5266c669d3ab1c6d42))
+* lint all ([23471dd](https://github.com/applandinc/appmap-agent-js/commit/23471dd4810fff1ea33f4e8ca3b3e01c8ab10fa2))
+* lint lib ([3b6a05b](https://github.com/applandinc/appmap-agent-js/commit/3b6a05b4004f5913963a3b208f3d8642a62d6ca5))
+* more linent test on current repostory url (failed with travis)) ([24dd21b](https://github.com/applandinc/appmap-agent-js/commit/24dd21b6341d28b9d8abb3e55db752f6d206728c))
+* start testing the client ([c581b88](https://github.com/applandinc/appmap-agent-js/commit/c581b880710120588bf315e9a44d36072cf0b607))
+
+
+### Features
+
+* config system is now more flexible ([465a918](https://github.com/applandinc/appmap-agent-js/commit/465a918b7d688d4a12c225a1235ac6f716e9b463))
+* easier bin call ([86f1b6d](https://github.com/applandinc/appmap-agent-js/commit/86f1b6ddb772803fb0291fe0dacc6d4221845d78))
+* implement hooks for commonjs and native modules and refactor the architecture ([14d1cee](https://github.com/applandinc/appmap-agent-js/commit/14d1cee56c2aa6e81f3b270a12673c026778b22e))
+
+
+### BREAKING CHANGES
+
+* Some old environment variables no longer work
+* The way the agent is invoked is completely changed
+
 ## [1.0.2](https://github.com/applandinc/appmap-agent-js/compare/v1.0.1...v1.0.2) (2021-03-30)
@@ -2,0 +29,0 @@

package.json

 {
   "name": "@appland/appmap-agent-js",
-  "version": "1.0.2",
+  "version": "2.0.0",
   "scripts": {
-    "commit": "npx prettier --write 'lib/**/*.mjs' 'src/**/*.js' 'test/**/*.mjs' 'bin/*.mjs' && npx cz",
-    "lint": "npx eslint 'lib/**/*.mjs' 'src/**/*.js' 'test/**/*.mjs' 'bin/*.mjs'",
+    "coverage": "npx c8 --reporter=html --require $TARGET node test/unit/$TARGET",
+    "build": "npx rollup lib/server/inline-channel.mjs --file dist/inline-channel.js --format cjs",
+    "prettify": "npx prettier --write 'lib/server/**/*.mjs' 'lib/client/**/*.js' 'test/**/*.mjs' 'bin/*.mjs'",
+    "commit": "npx cz",
+    "lint": "npx eslint 'lib/client/**/*.js' 'lib/server/**/*.mjs' 'test/**/*.mjs' 'bin/*.mjs'",
     "test": "node test/unit/run.mjs",
@@ -11,8 +14,9 @@ "deploy": "npx semantic-release"
   "files": [
-    "src/**/*.js",
-    "lib/**/*.mjs",
-    "bin/*.mjs"
+    "/home.js",
+    "/dist/*.js",
+    "/lib/**/*.{js,mjs}",
+    "/bin/*.mjs"
   ],
   "bin": {
-    "appmap": "bin/agent.mjs"
+    "appmap-agent": "bin/bin.mjs"
   },
@@ -19,0 +23,0 @@ "dependencies": {

README.md

@@ -7,3 +7,3 @@ # appmap-agent-js
 ```sh
-npm install
+npm install @appland/appmap-agent-js
 ```
@@ -13,3 +13,9 @@
 ```sh
-APPMAP_OUTPUT_DIR=. npx appmap -- standalone-file.js argv0 argv1
-```
+npx appmap-agent 
+  [--cjs]
+  [--esm]
+  [--app-name my-app-name]
+  [--map-name my-map-name]
+  [--output-dir path/to/output/dir/]
+  path/to/main.{js,mjs}
+```

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 2 instances in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

129988

increased by95.52%

Lines of code

4559

increased by97.44%

Number of lines in readme file

20

increased by53.85%

Worsened metrics

Number of package files

36

decreased by-2.7%

Number of low supply chain risk alerts

11

increased by22.22%

Number of medium supply chain risk alerts

6

increased by500%

No dependency changes