@ctx-core/env - npm Package Compare versions

Comparing version 8.0.14 to 8.1.0

package.json

 {
 	"name": "@ctx-core/env",
-	"version": "8.0.14",
+	"version": "8.1.0",
 	"description": "ctx-core env",
@@ -28,5 +28,5 @@ "main": "env.js",
 	"dependencies": {
-		"@ctx-core/error": "^5.1.22",
+		"@ctx-core/error": "^5.1.23",
 		"@ctx-core/logger": "^3.0.87",
-		"@ctx-core/object": "^6.1.9",
+		"@ctx-core/object": "^6.1.10",
 		"@ctx-core/package": "^3.0.27",
@@ -36,3 +36,3 @@ "dotenv": "^8.1.0",
 	},
-	"gitHead": "f1b04e485ef32b04e3a60547cecd7594c91401c2"
+	"gitHead": "588c2774d75714841ccb736d478a11704805b355"
 }

store.js

@@ -7,3 +7,6 @@ import { writable, derived } from 'svelte/store'
 	writable(
-		(typeof process === 'object' && process.env.HEROKU_SLUG_COMMIT)
+		(typeof process === 'object' && (
+			process.env.VERSION
+			|| process.env.HEROKU_SLUG_COMMIT
+		))
 		|| Math.random())
@@ -10,0 +13,0 @@ export const __is__production =

New alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

2244

increased by1.58%

Lines of code

48

increased by6.67%

Worsened metrics

Number of low supply chain risk alerts

6

increased by20%

Dependency changes

• Updated@ctx-core/error@^5.1.23

• Updated@ctx-core/object@^6.1.10