@copilotkit/license-verifier
Advanced tools
+7
-5
| { | ||
| "name": "@copilotkit/license-verifier", | ||
| "version": "0.4.0", | ||
| "version": "0.4.1", | ||
| "description": "CopilotKit license verification", | ||
@@ -16,7 +16,10 @@ "main": "dist/index.js", | ||
| "scripts": { | ||
| "build": "tsdown && node scripts/obfuscate.js", | ||
| "build": "tsdown", | ||
| "test": "vitest run" | ||
| }, | ||
| "files": [ | ||
| "dist" | ||
| "dist/index.js", | ||
| "dist/index.mjs", | ||
| "dist/index.d.ts", | ||
| "dist/index.d.mts" | ||
| ], | ||
@@ -29,5 +32,4 @@ "publishConfig": { | ||
| "tsdown": "^0.9.0", | ||
| "vitest": "^4.0.0", | ||
| "javascript-obfuscator": "^4.0.0" | ||
| "vitest": "^4.0.0" | ||
| } | ||
| } |
Sorry, the diff of this file is too big to display
Sorry, the diff of this file is too big to display
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Obfuscated code
Supply chain riskObfuscated files are intentionally packed to hide their behavior. This could be a sign of malware.
Found 2 instances
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
3
-25%9147
5156.9%0
-100%306230
-50.55%4
100%1
Infinity%