@expo/env - npm Package Compare versions

Comparing version 0.0.0 to 0.0.1-canary-20231125-d600e44

package.json

 {
   "name": "@expo/env",
-  "version": "0.0.0",
-  "description": "",
-  "main": "index.js",
+  "version": "0.0.1-canary-20231125-d600e44",
+  "description": "hydrate environment variables from .env files into process.env",
+  "main": "build/index.js",
   "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1"
+    "build": "tsc --emitDeclarationOnly && babel src --out-dir build --extensions \".ts\" --source-maps --ignore \"src/**/__mocks__/*\",\"src/**/__tests__/*\"",
+    "clean": "expo-module clean",
+    "lint": "expo-module lint",
+    "prepare": "expo-module clean && yarn run build",
+    "prepublishOnly": "expo-module prepublishOnly",
+    "test": "expo-module test",
+    "typecheck": "expo-module typecheck"
   },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/expo/expo.git",
+    "directory": "packages/@expo/env"
+  },
   "keywords": [],
-  "author": "",
-  "license": "ISC"
+  "license": "MIT",
+  "bugs": {
+    "url": "https://github.com/expo/expo/issues"
+  },
+  "homepage": "https://github.com/expo/expo/tree/main/packages/@expo/env#readme",
+  "files": [
+    "build"
+  ],
+  "dependencies": {
+    "dotenv": "~16.0.3",
+    "dotenv-expand": "~10.0.0",
+    "chalk": "^4.0.0",
+    "debug": "^4.3.4",
+    "getenv": "^1.0.0"
+  },
+  "devDependencies": {
+    "@babel/core": "^7.15.5",
+    "@types/getenv": "^1.0.0",
+    "expo-module-scripts": "0.0.1-canary-20231125-d600e44"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "gitHead": "d600e446fb6eaa71a089309b28076f312f0773a3"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

No contributors or author data

Maintenance

Package does not specify a list of contributors or an author in package.json.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

No bug tracker

Maintenance

Package does not have a linked bug tracker in package.json.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No tests

Quality

Package does not have any tests. This is a strong signal of a poorly maintained or low quality package.

Found 1 instance in 1 package

No website

Quality

Package does not have a website.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

29676

increased by13207.62%

Number of package files

9

increased by800%

Lines of code

303

increased byInfinity%

Number of low maintenance alerts

1

decreased by-50%

Number of low quality alerts

1

decreased by-66.67%

Number of medium quality alerts

0

decreased by-100%

Number of lines in readme file

4

increased byInfinity%

Worsened metrics

Dependency count

5

increased byInfinity%

Dev dependency count

3

increased byInfinity%

Number of low supply chain risk alerts

7

increased by600%

Dependency changes

• + Addedchalk@^4.0.0

• + Addeddebug@^4.3.4

• + Addeddotenv@~16.0.3

• + Addeddotenv-expand@~10.0.0

• + Addedgetenv@^1.0.0

• + Addedansi-styles@4.3.0(transitive)

• + Addedchalk@4.1.2(transitive)

• + Addedcolor-convert@2.0.1(transitive)

• + Addedcolor-name@1.1.4(transitive)

• + Addeddebug@4.4.0(transitive)

• + Addeddotenv@16.0.3(transitive)

• + Addeddotenv-expand@10.0.0(transitive)

• + Addedgetenv@1.0.0(transitive)

• + Addedhas-flag@4.0.0(transitive)

• + Addedms@2.1.3(transitive)

• + Addedsupports-color@7.2.0(transitive)