@digitak/esrun - npm Package Compare versions

Comparing version 1.0.2 to 1.0.3

package.json

 {
   "name": "@digitak/esrun",
-  "version": "1.0.2",
+  "version": "1.0.3",
   "description": "Execute directly your Typescript/Javascript(with ES modules) files using Esbuild",
@@ -11,3 +11,4 @@ "files": ["src/**/*"],
   "scripts": {
-    "test": "./src/bin.js test/test.ts"
+    "test": "./src/bin.js test/test.ts",
+    "publish": "npm publish --access public"
   },
@@ -14,0 +15,0 @@ "repository": {

src/main.js

@@ -15,8 +15,8 @@ const { resolve } = require('path')
 	const code = buildResult.outputFiles[0].text
-	const evaluator = new Function('process', code)
+	const evaluator = new Function('process', 'require', code)
 	process.argv = [process.argv[0], inputFile, ...args]
 
-	return evaluator(process)
+	return evaluator(process, require)
 }
 
 module.exports = esrun

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

3543

increased by1.9%

No dependency changes