@goldskycom/cli
Advanced tools
@goldskycom/cli - npm Package Compare versions
Comparing version 0.4.0 to 0.5.0
| { | ||
| "name": "@goldskycom/cli", | ||
| "version": "0.4.0", | ||
| "version": "0.5.0", | ||
| "description": "The Goldsky CLI to deploy subgraphs, index & transform blockchain data, configure webhooks, and access your data in real-time.", | ||
@@ -37,2 +37,3 @@ "main": "dist/index.js", | ||
| "@types/node": "^16.11.11", | ||
| "@types/readline-sync": "^1.4.4", | ||
| "@types/update-notifier": "^6.0.1", | ||
@@ -52,4 +53,5 @@ "@types/yaml": "^1.9.7", | ||
| "dependencies": { | ||
| "readline-sync": "^1.4.10", | ||
| "update-notifier": "^6.0.2" | ||
| } | ||
| } |
Sorry, the diff of this file is too big to display
Sorry, the diff of this file is not supported yet
New alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 8 instances in 1 package
Fixed alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by3.1%
719606
- Lines of code
- increased by3.2%
2775
Worsened metrics
- Dependency count
- increased by100%
2
- Dev dependency count
- increased by6.25%
17
- Number of low supply chain risk alerts
- increased by26.67%
57
- Number of medium supply chain risk alerts
- increased by11.11%
10
Dependency changes
+ Addedreadline-sync@^1.4.10
+ Addedreadline-sync@1.4.10(transitive)