@loopback/testlab
Advanced tools
@loopback/testlab - npm Package Compare versions
+5
-5
| { | ||
| "name": "@loopback/testlab", | ||
| "description": "A collection of test utilities we use to write LoopBack tests.", | ||
| "version": "6.1.4", | ||
| "version": "6.1.5", | ||
| "license": "MIT", | ||
@@ -41,3 +41,3 @@ "main": "dist/index.js", | ||
| "@types/shot": "^4.0.5", | ||
| "@types/sinon": "^17.0.2", | ||
| "@types/sinon": "^17.0.3", | ||
| "@types/supertest": "^2.0.16", | ||
@@ -53,7 +53,7 @@ "express": "^4.18.2", | ||
| "devDependencies": { | ||
| "@loopback/build": "^10.1.4", | ||
| "@loopback/build": "^10.1.5", | ||
| "@loopback/eslint-config": "^14.0.5", | ||
| "@types/node": "^16.18.68" | ||
| "@types/node": "^16.18.70" | ||
| }, | ||
| "gitHead": "5326aa3ae03bd01b970917f96d0403dd5102aef1" | ||
| "gitHead": "3f73360ac38e1615317cae977ac20c2e124e3518" | ||
| } |
New alerts
Network access
Supply chain riskThis module accesses the network.
Found 3 instances in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 3 instances in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Dependency changes
Updated
@types/sinon@^17.0.3