@dotenvx/dotenvx-ext-vault
Advanced tools
@dotenvx/dotenvx-ext-vault - npm Package Compare versions
+3
-5
| { | ||
| "version": "0.2.1", | ||
| "version": "0.3.0", | ||
| "name": "@dotenvx/dotenvx-ext-vault", | ||
@@ -26,7 +26,7 @@ "description": "🔐 manage .env.vault files", | ||
| "prerelease": "npm test", | ||
| "release": "standard-version", | ||
| "patch": "patch-package" | ||
| "release": "standard-version" | ||
| }, | ||
| "funding": "https://dotenvx.com", | ||
| "dependencies": { | ||
| "@yao-pkg/pkg": "^5.14.2", | ||
| "commander": "^11.1.0", | ||
@@ -41,4 +41,2 @@ "diff": "^5.2.0", | ||
| "capture-console": "^1.0.2", | ||
| "patch-package": "^8.0.0", | ||
| "pkg": "^5.8.1", | ||
| "proxyquire": "^2.1.3", | ||
@@ -45,0 +43,0 @@ "sinon": "^14.0.1", |
New alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Dev dependency count
6
-25%Worsened metrics
- Total package byte prevSize
39039
-0.13%- Dependency count
7
16.67%Dependency changes
+ Added
@yao-pkg/pkg@^5.14.2+ Added
@babel/generator@7.29.7(transitive)+ Added
@babel/helper-string-parser@7.29.7(transitive)+ Added
@babel/helper-validator-identifier@7.29.7(transitive)+ Added
@babel/parser@7.29.7(transitive)+ Added
@babel/types@7.29.7(transitive)+ Added
@jridgewell/gen-mapping@0.3.13(transitive)+ Added
@jridgewell/resolve-uri@3.1.2(transitive)+ Added
@jridgewell/sourcemap-codec@1.5.5(transitive)+ Added
@jridgewell/trace-mapping@0.3.31(transitive)+ Added
@yao-pkg/pkg@5.16.1(transitive)+ Added
@yao-pkg/pkg-fetch@3.5.16(transitive)+ Added
agent-base@6.0.2(transitive)+ Added
ansi-regex@5.0.1(transitive)+ Added
ansi-styles@4.3.0(transitive)+ Added
base64-js@1.5.1(transitive)+ Added
bl@4.1.0(transitive)+ Added
buffer@5.7.1(transitive)+ Added
chownr@1.1.4(transitive)+ Added
cliui@7.0.4(transitive)+ Added
color-convert@2.0.1(transitive)+ Added
color-name@1.1.4(transitive)+ Added
core-util-is@1.0.3(transitive)+ Added
debug@4.4.3(transitive)+ Added
decompress-response@6.0.0(transitive)+ Added
deep-extend@0.6.0(transitive)+ Added
detect-libc@2.1.2(transitive)+ Added
emoji-regex@8.0.0(transitive)+ Added
end-of-stream@1.4.5(transitive)+ Added
es-errors@1.3.0(transitive)+ Added
escalade@3.2.0(transitive)+ Added
expand-template@2.0.3(transitive)+ Added
from2@2.3.0(transitive)+ Added
fs-constants@1.0.0(transitive)+ Added
function-bind@1.1.2(transitive)+ Added
get-caller-file@2.0.5(transitive)+ Added
github-from-package@0.0.0(transitive)+ Added
hasown@2.0.4(transitive)+ Added
https-proxy-agent@5.0.1(transitive)+ Added
ieee754@1.2.1(transitive)+ Added
inherits@2.0.4(transitive)+ Added
ini@1.3.8(transitive)+ Added
into-stream@6.0.0(transitive)+ Added
is-core-module@2.16.2(transitive)+ Added
is-fullwidth-code-point@3.0.0(transitive)+ Added
isarray@1.0.0(transitive)+ Added
jsesc@3.1.0(transitive)+ Added
mimic-response@3.1.0(transitive)+ Added
minimist@1.2.8(transitive)+ Added
mkdirp-classic@0.5.3(transitive)+ Added
ms@2.1.3(transitive)+ Added
multistream@4.1.0(transitive)+ Added
napi-build-utils@2.0.0(transitive)+ Added
node-abi@3.92.0(transitive)+ Added
node-fetch@2.7.0(transitive)+ Added
once@1.4.0(transitive)+ Added
p-is-promise@3.0.0(transitive)+ Added
path-parse@1.0.7(transitive)+ Added
picocolors@1.1.1(transitive)+ Added
prebuild-install@7.1.3(transitive)+ Added
process-nextick-args@2.0.1(transitive)+ Added
progress@2.0.3(transitive)+ Added
pump@3.0.4(transitive)+ Added
rc@1.2.8(transitive)+ Added
readable-stream@2.3.83.6.2(transitive)+ Added
require-directory@2.1.1(transitive)+ Added
resolve@1.22.12(transitive)+ Added
safe-buffer@5.1.25.2.1(transitive)+ Added
semver@7.8.1(transitive)+ Added
simple-concat@1.0.1(transitive)+ Added
simple-get@4.0.1(transitive)+ Added
stream-meter@1.0.4(transitive)+ Added
string-width@4.2.3(transitive)+ Added
string_decoder@1.1.11.3.0(transitive)+ Added
strip-ansi@6.0.1(transitive)+ Added
strip-json-comments@2.0.1(transitive)+ Added
supports-preserve-symlinks-flag@1.0.0(transitive)+ Added
tar-fs@2.1.4(transitive)+ Added
tar-stream@2.2.0(transitive)+ Added
tinyglobby@0.2.17(transitive)+ Added
tr46@0.0.3(transitive)+ Added
tunnel-agent@0.6.0(transitive)+ Added
util-deprecate@1.0.2(transitive)+ Added
webidl-conversions@3.0.1(transitive)+ Added
whatwg-url@5.0.0(transitive)+ Added
wrap-ansi@7.0.0(transitive)+ Added
wrappy@1.0.2(transitive)+ Added
y18n@5.0.8(transitive)+ Added
yargs@16.2.0(transitive)+ Added
yargs-parser@20.2.9(transitive)