New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@duetds/icons
Advanced tools
@duetds/icons - npm Package Compare versions
Comparing version 0.0.1-alpha.17 to 0.0.1-alpha.18
| { | ||
| "name": "@duetds/icons", | ||
| "version": "0.0.1-alpha.17", | ||
| "version": "0.0.1-alpha.18", | ||
| "description": "This package includes Duet Icons and related tools.", | ||
@@ -18,4 +18,11 @@ "author": "Viljami Salminen <ext-viljami.salminen@lahitapiola.fi>", | ||
| "scripts": { | ||
| "test": "echo \"Error: run tests from root\" && exit 1", | ||
| "build": "copyfiles --flat src/*.js lib" | ||
| "build": "copyfiles --up 1 \"./src/**/*\" \"./lib\"", | ||
| "jsonlint": "jsonlint src/_data/duet-icons.json -q -V .jsonlintschema", | ||
| "svglint": "svglint src/icons/* --ci", | ||
| "wslint": "editorconfig-checker --ignore", | ||
| "prepublishOnly": "node src/scripts/prepublish.js", | ||
| "postpublish": "rm src/icons/*.js src/icons.js", | ||
| "test": "jest", | ||
| "pretest": "npm run prepublishOnly", | ||
| "posttest": "npm run postpublish" | ||
| }, | ||
@@ -25,7 +32,11 @@ "bugs": { | ||
| }, | ||
| "gitHead": "398ad5150d5d9aa979ad22701b282248d15ce89e", | ||
| "gitHead": "1da343a74800e2afc8636982e3574f109876939a", | ||
| "devDependencies": { | ||
| "copyfiles": "^2.1.0", | ||
| "npm-run-all": "^4.1.5" | ||
| "editorconfig-checker": "^2.0.8", | ||
| "jest": "^24.1.0", | ||
| "jsonlint2": "^1.7.1", | ||
| "npm-run-all": "^4.1.5", | ||
| "svglint": "^1.0.4" | ||
| } | ||
| } |
New alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Trivial Package
Supply chain riskPackages less than 10 lines of code are easily copied into your own project and may not warrant the additional supply chain risk of an external dependency.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by576.68%
7166
- Number of package files
- increased by166.67%
8
- Lines of code
- increased by883.33%
59
- Number of medium supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Dev dependency count
- increased by200%
6
- Number of low supply chain risk alerts
- increased by200%
3
No dependency changes