@bearer/functions - npm Package Compare versions

Comparing version 1.8.1 to 1.8.2

CHANGELOG.md

@@ -6,2 +6,10 @@ # Change Log
 
+## [1.8.2](https://github.com/Bearer/bearer/compare/v1.8.1...v1.8.2) (2019-07-29)
+
+**Note:** Version bump only for package @bearer/functions
+
+
+
+
+
 ## [1.8.1](https://github.com/Bearer/bearer/compare/v1.8.0...v1.8.1) (2019-07-25)
@@ -8,0 +16,0 @@

lib/functions/fetch.js

@@ -15,3 +15,2 @@ "use strict";
 const logger_1 = __importDefault(require("@bearer/logger"));
-const x_ray_1 = require("@bearer/x-ray");
 const utils_1 = require("./utils");
@@ -31,3 +30,3 @@ const store_1 = require("../store");
             updatedEvent.context.integrationUuid = event.context.buid;
-            x_ray_1.setupFunctionIdentifiers(updatedEvent);
+            setupFunctionIdentifiers(updatedEvent);
             const functionEvent = Object.assign({}, utils_1.eventAsActionParams(event), { store: new store_1.Store(event.context.signature) });
@@ -54,4 +53,14 @@ try {
 exports.FetchData = FetchData;
+const setupFunctionIdentifiers = function (event) {
+    const context = event.context || {};
+    const { clientId, integrationUuid, organizationIdentifier } = context;
+    logger('%j', {
+        message: `Injecting ${JSON.stringify({ clientId, integrationUuid, organizationIdentifier })} `,
+        application: 'x-ray'
+    });
+    process.env.clientId = organizationIdentifier || clientId;
+    process.env.scenarioUuid = integrationUuid;
+};
 class FetchActionExecutionError extends Error {
 }
 exports.FetchActionExecutionError = FetchActionExecutionError;

package.json

 {
   "private": false,
   "name": "@bearer/functions",
-  "version": "1.8.1",
+  "version": "1.8.2",
   "description": "Bearer Functions",
@@ -26,3 +26,2 @@ "main": "lib/index.js",
     "@bearer/logger": "^1.7.0",
-    "@bearer/x-ray": "^1.8.1",
     "axios": "^0.18.0"
@@ -38,3 +37,3 @@ },
   },
-  "gitHead": "3bdc2a38a46b9f3ed551294d997c5f20de8bb6d4"
+  "gitHead": "1a45da2b1190c88c10fb730cbf3e995c299c24a0"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 2 instances in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

48776

increased by1.05%

Dependency count

2

decreased by-33.33%

Lines of code

490

increased by1.87%

Worsened metrics

Number of low supply chain risk alerts

4

increased by100%

Dependency changes

• - Removed@bearer/x-ray@^1.8.1

• - Removed@bearer/x-ray@1.8.1(transitive)