@deboxsoft/module-core
Advanced tools
@deboxsoft/module-core - npm Package Compare versions
Comparing version 2.6.30 to 2.6.31
@@ -6,3 +6,3 @@ import { | ||
| __reExport | ||
| } from "./chunk-ZWSPDXQ5.js"; | ||
| } from "./chunk-VTGYGIUS.js"; | ||
@@ -9,0 +9,0 @@ // src/index.ts |
| { | ||
| "name": "@deboxsoft/module-core", | ||
| "version": "2.6.30", | ||
| "version": "2.6.31", | ||
| "license": "SEE LICENSE IN LICENSE", | ||
@@ -29,5 +29,3 @@ "maintainers": [ | ||
| "files": [ | ||
| "*", | ||
| "!src", | ||
| "!tests" | ||
| "libs" | ||
| ], | ||
@@ -53,6 +51,2 @@ "publishConfig": { | ||
| }, | ||
| "peerDependencies": { | ||
| "dotenv": "16.x", | ||
| "nconf": "0.x" | ||
| }, | ||
| "scripts": { | ||
@@ -59,0 +53,0 @@ "build": "tsup", |
Sorry, the diff of this file is too big to display
New alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Fixed alerts
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Improved metrics
- Dependency count
- decreased by-18.18%
9
- Number of low supply chain risk alerts
- decreased by-50%
3
- Number of medium supply chain risk alerts
- decreased by-50%
1
Worsened metrics
- Total package byte prevSize
- decreased by-70.55%
47508
- Number of package files
- decreased by-50%
8
- Lines of code
- decreased by-66.14%
1481