@heroku-cli/color
Advanced tools
@heroku-cli/color - npm Package Compare versions
Comparing version 1.1.16 to 2.0.0
| { | ||
| "name": "@heroku-cli/color", | ||
| "description": "base CLI command for cli-engine", | ||
| "version": "1.1.16", | ||
| "author": "Jeff Dickey @jdxcode", | ||
| "version": "2.0.0", | ||
| "author": "Heroku", | ||
| "bugs": "https://github.com/heroku/heroku-cli-color/issues", | ||
| "dependencies": { | ||
| "ansi-styles": "^3.2.1", | ||
| "chalk": "^2.4.1", | ||
| "strip-ansi": "^5.0.0", | ||
| "supports-color": "^5.5.0", | ||
| "ansi-styles": "^4.3.0", | ||
| "chalk": "^4.1.2", | ||
| "supports-color": "^7.2.0", | ||
| "tslib": "^1.9.3" | ||
| }, | ||
| "devDependencies": { | ||
| "@heroku-cli/tslint": "^1.1.4", | ||
| "@types/ansi-styles": "3.2.1", | ||
| "@types/chalk": "2.2.0", | ||
| "@types/jest": "^23.3.5", | ||
| "@types/node": "10.12.0", | ||
| "@types/node": "14.18.63", | ||
| "@types/supports-color": "5.3.0", | ||
| "del-cli": "1.1.0", | ||
| "jest": "^23.6.0", | ||
| "lint-staged": "7.3.0", | ||
| "prettier": "^1.14.3", | ||
| "ts-jest": "^23.10.4", | ||
| "tslint": "^5.11.0", | ||
| "typescript": "3.1.3" | ||
| "eslint": "^7.32.0", | ||
| "jest": "^24.9.0", | ||
| "lint-staged": "10.5.4", | ||
| "prettier": "^2.8.8", | ||
| "ts-jest": "^24.3.0", | ||
| "typescript": "4.8.4" | ||
| }, | ||
| "engines": { | ||
| "node": ">=6.0.0" | ||
| "node": ">=14.0.0" | ||
| }, | ||
@@ -44,3 +41,3 @@ "files": [ | ||
| "scripts": { | ||
| "prepare": "rm -rf lib && tsc", | ||
| "build": "rm -rf lib && tsc", | ||
| "test": "jest" | ||
@@ -47,0 +44,0 @@ }, |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Mixed license
License(Experimental) Package contains multiple licenses.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
No README
QualityPackage does not have a README. This may indicate a failed publish or a low quality package.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Improved metrics
- Total package byte prevSize
- increased by180.03%
13825
- Dependency count
- decreased by-20%
4
- Dev dependency count
- decreased by-15.38%
11
- Number of medium quality alerts
- decreased by-100%
0
- Number of lines in readme file
- increased byInfinity%
41
- Number of low supply chain risk alerts
- decreased by-66.67%
1
Worsened metrics
- Number of package files
- decreased by-57.14%
3
- Number of low license alerts
- increased byInfinity%
1
- Lines of code
- decreased by-100%
0
- Number of medium supply chain risk alerts
- increased by100%
2
Dependency changes
+ Addedansi-styles@4.3.0(transitive)
+ Addedchalk@4.1.2(transitive)
+ Addedcolor-convert@2.0.1(transitive)
+ Addedcolor-name@1.1.4(transitive)
+ Addedhas-flag@4.0.0(transitive)
+ Addedsupports-color@7.2.0(transitive)
- Removedstrip-ansi@^5.0.0
- Removedansi-regex@4.1.1(transitive)
- Removedansi-styles@3.2.1(transitive)
- Removedchalk@2.4.2(transitive)
- Removedcolor-convert@1.9.3(transitive)
- Removedcolor-name@1.1.3(transitive)
- Removedescape-string-regexp@1.0.5(transitive)
- Removedhas-flag@3.0.0(transitive)
- Removedstrip-ansi@5.2.0(transitive)
- Removedsupports-color@5.5.0(transitive)
Updatedansi-styles@^4.3.0
Updatedchalk@^4.1.2
Updatedsupports-color@^7.2.0