@coolgk/mongo - npm Package Compare versions

Comparing version 1.0.14 to 1.0.15

package.json

@@ -1,74 +0,1 @@
-{
-    "name": "@coolgk/mongo",
-    "version": "1.0.14",
-    "description": "A javascript / typescript MongoDB modelling library which enables joins in collections, simplifies CRUD operations for sub / nested documents and implements schema based data validation",
-    "main": "./mongo.js",
-    "types": "./mongo.d.ts",
-    "repository": {
-        "type": "git",
-        "url": "https://github.com/coolgk/node-mongo.git"
-    },
-    "dependencies": {
-        "@coolgk/array": "^2.0.4",
-        "mongodb": "^3.0.10"
-    },
-    "devDependencies": {
-        "@types/mongodb": "^3.0.19",
-        "@types/node": "^9.6.21",
-        "chai": "^4.1.2",
-        "chai-as-promised": "^7.1.1",
-        "chalk": "^2.4.1",
-        "coveralls": "^3.0.1",
-        "del": "^3.0.0",
-        "eslint": "^4.19.1",
-        "eslint-config-google": "^0.9.1",
-        "gulp": "^4.0.2",
-        "gulp-header": "^2.0.9",
-        "gulp-typescript": "^5.0.1",
-        "js-yaml": "^3.13.1",
-        "jsdoc-to-markdown": "^3.0.4",
-        "mocha": "^6.2.0",
-        "nyc": "^14.1.1",
-        "pre-commit": "^1.2.2",
-        "retire": "^1.6.1",
-        "sinon": "^7.4.1",
-        "snyk": "^1.82.1",
-        "source-map-support": "^0.5.6",
-        "tslint": "^5.18.0",
-        "typescript": "^2.9.1"
-    },
-    "author": "Daniel Gong <daniel.k.gong@gmail.com>",
-    "scripts": {
-        "pretest": "tsc --project tsconfig.dev.json",
-        "test": "nyc mocha test",
-        "test:quick": "export $(cat .env | xargs) && mocha --require source-map-support/register test",
-        "test:precommit": "export $(cat .env | xargs) && tsc --project tsconfig.dev.json && nyc --reporter text-summary mocha --require source-map-support/register test --reporter min",
-        "tslint": "tslint --exclude src/test.ts src/**/*.ts",
-        "tsc": "tsc --project tsconfig.json",
-        "tsc:dev": "tsc --project tsconfig.debug.json",
-        "tsc:watch": "tsc --project tsconfig.debug.json -w --pretty",
-        "coverage": "nyc report --reporter=text-lcov | coveralls",
-        "package": "gulp package"
-    },
-    "pre-commit": {
-        "silent": false,
-        "run": [
-            "tslint",
-            "test:precommit"
-        ]
-    },
-    "license": "MIT",
-    "bugs": {
-        "url": "https://github.com/coolgk/node-mongo/issues"
-    },
-    "homepage": "https://coolgk.github.io/mongodb-orm.html",
-    "keywords": [
-        "mongo",
-        "MongoDB",
-        "orm",
-        "odm",
-        "relational",
-        "data validation",
-        "join"
-    ]
-}
+{"name":"@coolgk/mongo","version":"1.0.15","description":"A javascript / typescript MongoDB modelling library which enables joins in collections, simplifies CRUD operations for sub / nested documents and implements schema based data validation","main":"./mongo.js","types":"./mongo.d.ts","dependencies":{"@coolgk/array":"^2.0.4","mongodb":"^3.0.10"},"author":"Daniel Gong <daniel.k.gong@gmail.com>","license":"MIT","bugs":{"url":"https://github.com/coolgk/node-mongo/issues"},"homepage":"https://coolgk.github.io/mongodb-orm.html","keywords":["mongo","MongoDB","orm","odm","relational","data validation","join"]}

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 2 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Dev dependency count

0

decreased by-100%

Number of low supply chain risk alerts

1

decreased by-75%

Number of medium supply chain risk alerts

1

decreased by-50%

Worsened metrics

Total package byte prevSize

61122

decreased by-69.67%

Number of package files

5

decreased by-66.67%

Lines of code

721

decreased by-78.63%

No dependency changes