@libphamton/chatfanpage - npm Package Compare versions

Comparing version 1.0.1 to 1.0.2

package.json

 {
   "name": "@libphamton/chatfanpage",
-  "version": "1.0.1",
-  "description": "connect to api tiwtter",
+  "version": "1.0.2",
+  "description": "connect to api chatfanpage",
   "main": "lib/index.js",
@@ -25,11 +25,3 @@ "scripts": {
   "dependencies": {
-    "@libphamton/api-client-x": "^1.0.7",
-    "@libphamton/client-fb": "github:libphamton/client-fb",
-    "@oraliepham/api-chat-fanpage-facebook": "^1.2.0",
-    "@oraliepham/api-facebooknew": "^1.0.5",
-    "api-chat-fanpage-facebook": "^1.2.0",
-    "api-chatfb": "^1.0.7",
-    "api-chatfb-test": "^1.0.6",
-    "api-facebooknew": "^1.0.4"
   }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

GitHub dependency

Supply chain risk

Contains a dependency which resolves to a GitHub URL. Dependencies fetched from GitHub specifiers are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

35173

increased by741.86%

Dependency count

0

decreased by-100%

Number of package files

18

increased by157.14%

Lines of code

666

increased byInfinity%

Number of high supply chain risk alerts

0

decreased by-100%

Worsened metrics

Number of low supply chain risk alerts

5

increased byInfinity%

Number of medium supply chain risk alerts

3

increased by200%

Dependency changes

• - Removed@libphamton/api-client-x@^1.0.7

• - Removed@libphamton/client-fb@github:libphamton/client-fb

• - Removed@oraliepham/api-chat-fanpage-facebook@^1.2.0

• - Removed@oraliepham/api-facebooknew@^1.0.5

• - Removedapi-chat-fanpage-facebook@^1.2.0

• - Removedapi-chatfb@^1.0.7

• - Removedapi-chatfb-test@^1.0.6

• - Removedapi-facebooknew@^1.0.4

• - Removed@libphamton/api-client-x@1.2.1(transitive)

• - Removed@libphamton/client-fb@1.0.9(transitive)

• - Removed@libphamton/fb-group@1.0.5(transitive)