@evilmartians/lefthook-installer - npm Package Compare versions

Comparing version 1.10.5 to 1.10.6

package.json

 {
   "name": "@evilmartians/lefthook-installer",
-  "version": "1.10.5",
+  "version": "1.10.6",
   "description": "Simple git hooks manager",
   "main": "bin/index.js",
+  "files": [
+    "schema.json"
+  ],
   "bin": {
@@ -7,0 +10,0 @@ "lefthook": "bin/index.js"

New alerts

Deprecated

Maintenance

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Fixed alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 2 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

22327

increased by77.98%

Lines of code

582

increased by532.61%

Number of low supply chain risk alerts

0

decreased by-100%

Number of medium supply chain risk alerts

2

decreased by-33.33%

Worsened metrics

Number of medium maintenance alerts

1

increased byInfinity%

No dependency changes