@holidayextras/deployment-helpers - npm Package Compare versions

Comparing version 1.5.2 to 1.7.4

package.json

 {
   "name": "@holidayextras/deployment-helpers",
-  "version": "1.5.2",
+  "version": "1.7.4",
   "description": "A collection of scripts that can be used as part of a deployment process.",
-  "main": "",
+  "main": "src/utils",
+  "bin": {
+    "create-private-release": "./nodeApps/createPrivateRelease.sh",
+    "generate-signed-file": "./nodeApps/generateSignedFile.js"
+  },
   "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1"
+    "coverage": "nyc mocha && nyc check-coverage",
+    "test": "npm run coverage",
+    "release": "nodeApps/createPrivateRelease.sh",
+    "lint": "standard",
+    "ci": "npm run lint && MOCHA_FILE=$CIRCLE_TEST_REPORTS/junit/test-results.xml nyc mocha --reporter mocha-junit-reporter && nyc check-coverage"
   },
+  "standard": {
+    "globals": [
+      "after",
+      "afterEach",
+      "before",
+      "beforeEach",
+      "context",
+      "describe",
+      "expect",
+      "it",
+      "sandbox"
+    ],
+    "ignore": [
+      "/dist"
+    ]
+  },
+  "owner": "payment-platform",
+  "license": "UNLICENSED",
+  "devDependencies": {
+    "async": "^2.3.0",
+    "chai": "^3.5.0",
+    "dirty-chai": "^1.2.2",
+    "mocha": "^3.2.0",
+    "mocha-junit-reporter": "^1.13.0",
+    "nyc": "^10.1.2",
+    "simple-git": "^1.70.0",
+    "sinon": "^1.17.6",
+    "sinon-chai": "^2.8.0",
+    "standard": "^9.0.1"
+  },
+  "directories": {
+    "test": "test"
+  },
   "repository": {
@@ -14,3 +55,2 @@ "type": "git",
   "author": "",
-  "license": "MIT",
   "bugs": {
@@ -17,0 +57,0 @@ "url": "https://github.com/holidayextras/deployment-helpers/issues"

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Misc. License Issues

License

(Experimental) A package's licensing information has fine-grained problems.

Found 1 instance in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 11 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

No tests

Quality

Package does not have any tests. This is a strong signal of a poorly maintained or low quality package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

55405

increased by28.2%

Number of package files

27

increased by35%

Lines of code

184

increased byInfinity%

Number of low quality alerts

0

decreased by-100%

Worsened metrics

Dev dependency count

10

increased byInfinity%

Number of medium license alerts

1

increased byInfinity%

Number of low supply chain risk alerts

21

increased byInfinity%

Number of medium supply chain risk alerts

3

increased by200%

No dependency changes