@instana/core
Advanced tools
@instana/core - npm Package Compare versions
+5
-5
| { | ||
| "name": "@instana/core", | ||
| "version": "5.4.2", | ||
| "version": "5.4.3", | ||
| "description": "Core library for Instana's Node.js packages", | ||
@@ -64,6 +64,6 @@ "main": "src/index.js", | ||
| "@opentelemetry/core": "2.6.1", | ||
| "@opentelemetry/instrumentation-fs": "0.33.0", | ||
| "@opentelemetry/instrumentation-fs": "0.34.0", | ||
| "@opentelemetry/instrumentation-oracledb": "0.39.0", | ||
| "@opentelemetry/instrumentation-restify": "0.58.0", | ||
| "@opentelemetry/instrumentation-socket.io": "0.60.0", | ||
| "@opentelemetry/instrumentation-restify": "0.59.0", | ||
| "@opentelemetry/instrumentation-socket.io": "0.61.0", | ||
| "@opentelemetry/instrumentation-tedious": "0.28.0", | ||
@@ -84,3 +84,3 @@ "@opentelemetry/sdk-trace-base": "2.3.0", | ||
| }, | ||
| "gitHead": "4deaff4f6c815a40801ceff27649d753ef77e2aa" | ||
| "gitHead": "a04f29996f49529d4cfb5749fa964ad030c8ad12" | ||
| } |
+10
-0
@@ -76,2 +76,4 @@ /* | ||
| const transmissionDelayMaxValue = 5000; | ||
| /** | ||
@@ -227,2 +229,10 @@ * @typedef {Object} InstanaConfig | ||
| // Validate max value for transmissionDelay | ||
| if (config.metrics.transmissionDelay > transmissionDelayMaxValue) { | ||
| logger.warn( | ||
| `The value of config.metrics.transmissionDelay (or INSTANA_METRICS_TRANSMISSION_DELAY) (${config.metrics.transmissionDelay}) exceeds the maximum allowed value of ${transmissionDelayMaxValue}. Assuming the max value ${transmissionDelayMaxValue}.` | ||
| ); | ||
| config.metrics.transmissionDelay = transmissionDelayMaxValue; | ||
| } | ||
| config.metrics.timeBetweenHealthcheckCalls = | ||
@@ -229,0 +239,0 @@ config.metrics.timeBetweenHealthcheckCalls || defaults.metrics.timeBetweenHealthcheckCalls; |
Sorry, the diff of this file is too big to display
New alerts
Network access
Supply chain riskThis module accesses the network.
Found 4 instances in 1 package
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 2 instances in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 30 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
AI-detected potential code anomaly
Supply chain riskAI has identified unusual behaviors that may pose a security risk.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 4 instances in 1 package
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 2 instances in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 30 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
AI-detected potential code anomaly
Supply chain riskAI has identified unusual behaviors that may pose a security risk.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
908611
0.16%- Lines of code
22464
0.04%Dependency changes
+ Added
@opentelemetry/api-logs@0.215.0(transitive)+ Added
@opentelemetry/instrumentation@0.215.0(transitive)+ Added
@opentelemetry/instrumentation-fs@0.34.0(transitive)+ Added
@opentelemetry/instrumentation-restify@0.59.0(transitive)+ Added
@opentelemetry/instrumentation-socket.io@0.61.0(transitive)- Removed
@opentelemetry/api-logs@0.213.0(transitive)- Removed
@opentelemetry/instrumentation@0.213.0(transitive)- Removed
@opentelemetry/instrumentation-fs@0.33.0(transitive)- Removed
@opentelemetry/instrumentation-restify@0.58.0(transitive)- Removed
@opentelemetry/instrumentation-socket.io@0.60.0(transitive)