New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@code-pushup/cli

Package Overview
Dependencies
Maintainers
3
Versions
254
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@code-pushup/cli - npm Package Compare versions

Comparing version
0.119.0
 to
0.119.1
+11
bin.js
#!/usr/bin/env node
/**
* This file serves as the CLI entry point.
*
* We use a separate bin file (instead of pointing directly to src/index.js)
* because TypeScript build processes don't preserve file permissions.
* By tracking this file in git with executable permissions (+x), we ensure
* the CLI remains executable after npm publish without needing post-install scripts.
*/
import './src/index.js';
+5
-5
package.json
{
"name": "@code-pushup/cli",
"version": "0.119.0",
"version": "0.119.1",
"license": "MIT",

@@ -42,3 +42,3 @@ "description": "A CLI to run all kinds of code quality measurements to align your team with company goals",

"bin": {
"code-pushup": "./bin/index.js"
"code-pushup": "./bin.js"
},

@@ -49,5 +49,5 @@ "engines": {

"dependencies": {
"@code-pushup/models": "0.119.0",
"@code-pushup/core": "0.119.0",
"@code-pushup/utils": "0.119.0",
"@code-pushup/models": "0.119.1",
"@code-pushup/core": "0.119.1",
"@code-pushup/utils": "0.119.1",
"yargs": "^17.7.2",

@@ -54,0 +54,0 @@ "ansis": "^3.3.0",

-11
bin/index.js
#!/usr/bin/env node
/**
* This file serves as the CLI entry point.
*
* We use a separate bin file (instead of pointing directly to src/index.js)
* because TypeScript build processes don't preserve file permissions.
* By tracking this file in git with executable permissions (+x), we ensure
* the CLI remains executable after npm publish without needing post-install scripts.
*/
import '../src/index.js';