@google-cloud/profiler - npm Package Compare versions

Comparing version 5.0.0 to 5.0.1

CHANGELOG.md

@@ -7,2 +7,9 @@ # Changelog
 
+## [5.0.1](https://github.com/googleapis/cloud-profiler-nodejs/compare/v5.0.0...v5.0.1) (2022-07-08)
+
+
+### Bug Fixes
+
+* fix build so it includes expected files (and modify test to catch this) ([6d9a5ca](https://github.com/googleapis/cloud-profiler-nodejs/commit/6d9a5caa276a7d41f6f3b0e9da8d576e261f3f3f))
+
 ## [5.0.0](https://github.com/googleapis/cloud-profiler-nodejs/compare/v4.2.0...v5.0.0) (2022-06-20)
@@ -9,0 +16,0 @@

package.json

 {
   "name": "@google-cloud/profiler",
-  "version": "5.0.0",
+  "version": "5.0.1",
   "description": "Adds support for Cloud Profiler to Node.js applications",
@@ -73,3 +73,2 @@ "repository": "googleapis/cloud-profiler-nodejs",
     "build/third_party/cloud-debug-nodejs",
-    "bindings",
     "build/protos"
@@ -76,0 +75,0 @@ ],

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses eval() which is a dangerous function. This prevents the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 7 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

1010431

increased by1844.89%

Number of package files

24

increased by380%

Lines of code

17528

increased byInfinity%

Worsened metrics

Number of low supply chain risk alerts

10

increased by900%

No dependency changes