New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@fonos/certs
Advanced tools
@fonos/certs - npm Package Compare versions
Comparing version 0.0.16 to 0.0.17
| declare const PATH_TO_CONFIG: string; | ||
| declare const PATH_TO_SALT: string; | ||
| declare const PATH_TO_ACCESS: string; | ||
| declare const ACCESS_KEY_ID = "fonos"; | ||
| declare const ISS = "fonos"; | ||
| declare const ACCESS_KEY_ID: string; | ||
| declare const ISS: string; | ||
| declare const getSalt: () => string; | ||
@@ -7,0 +7,0 @@ declare const accessExist: () => boolean; |
@@ -27,5 +27,5 @@ "use strict"; | ||
| exports.PATH_TO_ACCESS = PATH_TO_ACCESS; | ||
| const ACCESS_KEY_ID = 'fonos'; // WARNING: Fix hardcode | ||
| const ACCESS_KEY_ID = process.env.ACCESS_KEY_ID || 'fonos'; | ||
| exports.ACCESS_KEY_ID = ACCESS_KEY_ID; | ||
| const ISS = 'fonos'; // WARNING: Fix hardcode | ||
| const ISS = process.env.ISS || 'fonos'; | ||
| exports.ISS = ISS; | ||
@@ -32,0 +32,0 @@ if (!fs_1.default.existsSync(PATH_TO_CONFIG)) |
| { | ||
| "name": "@fonos/certs", | ||
| "version": "0.0.16", | ||
| "version": "0.0.17", | ||
| "description": "Handles Fonos certificates", | ||
@@ -41,3 +41,3 @@ "author": "Pedro Sanders <sanderspedro@gmail.com>", | ||
| }, | ||
| "gitHead": "13560dde3808346293d42bfda75c72569d2476aa" | ||
| "gitHead": "47085ceec16b8f3df578436cf617e10a1c1e94ab" | ||
| } |
New alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Worsened metrics
- Total package byte prevSize
- decreased by-0.1%
5713
- Number of low supply chain risk alerts
- increased by200%
3
No dependency changes