@dotenvx/dotenvx - npm Package Compare versions

Comparing version 1.24.3 to 1.24.4

CHANGELOG.md

@@ -5,11 +5,17 @@ # Changelog
 
-## [Unreleased](https://github.com/dotenvx/dotenvx/compare/v1.24.3...main)
+[Unreleased](https://github.com/dotenvx/dotenvx/compare/v1.24.4...main)
 
-## [1.24.3](https://github.com/dotenvx/dotenvx/compare/v1.24.2...1.24.3)
+## [1.24.4](https://github.com/dotenvx/dotenvx/compare/v1.24.3...v1.24.4)
 
 ### Changed
 
+* do not expand command substitution ([#456](https://github.com/dotenvx/dotenvx/pull/456))
+
+## [1.24.3](https://github.com/dotenvx/dotenvx/compare/v1.24.2...v1.24.3)
+
+### Changed
+
 * 🐞 fix command substitution for more complex commands ([#455](https://github.com/dotenvx/dotenvx/pull/455))
 
-## [1.24.2](https://github.com/dotenvx/dotenvx/compare/v1.24.1...1.24.2)
+## [1.24.2](https://github.com/dotenvx/dotenvx/compare/v1.24.1...v1.24.2)
 
@@ -20,3 +26,3 @@ ### Changed
 
-## [1.24.1](https://github.com/dotenvx/dotenvx/compare/v1.24.0...1.24.1)
+## [1.24.1](https://github.com/dotenvx/dotenvx/compare/v1.24.0...v1.24.1)
 
@@ -27,3 +33,3 @@ ### Changed
 
-## 1.24.0
+## [1.24.0](https://github.com/dotenvx/dotenvx/compare/v1.23.0...v1.24.0)
 
@@ -30,0 +36,0 @@ ### Added

package.json

 {
-  "version": "1.24.3",
+  "version": "1.24.4",
   "name": "@dotenvx/dotenvx",
@@ -4,0 +4,0 @@ "description": "a better dotenv–from the creator of `dotenv`",

src/lib/helpers/parse.js

@@ -47,8 +47,13 @@ const chomp = require('./chomp')
       // eval empty, double, or backticks
+      let evaled = false
       if (quote !== "'" && (!this.inProcessEnv(key) || this.processEnv[key] === this.parsed[key])) {
-        this.parsed[key] = this.eval(this.parsed[key])
+        const priorEvaled = this.parsed[key]
+        this.parsed[key] = this.eval(priorEvaled)
+        if (priorEvaled !== this.parsed[key]) {
+          evaled = true
+        }
       }
 
       // expand empty, double, or backticks
-      if (quote !== "'" && !this.processEnv[key]) {
+      if (!evaled && quote !== "'" && !this.processEnv[key]) {
         this.parsed[key] = resolveEscapeSequences(this.expand(this.parsed[key]))
@@ -55,0 +60,0 @@ }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

217703

increased by0.18%

Lines of code

3651

increased by0.14%

No dependency changes