@mapbox/node-pre-gyp
Advanced tools
@mapbox/node-pre-gyp - npm Package Compare versions
+3
-0
@@ -39,4 +39,7 @@ 'use strict'; | ||
| return s3.putObject(params, wcb(callback)); | ||
| }, | ||
| getObject(params, callback) { | ||
| return s3.getObject(params, wcb(callback)); | ||
| } | ||
| }; | ||
| } |
@@ -87,4 +87,7 @@ 'use strict'; | ||
| return s3.putObject(params, callback); | ||
| }, | ||
| getObject(params, callback) { | ||
| return s3.getObject(params, callback); | ||
| } | ||
| }; | ||
| }; |
+2
-2
| { | ||
| "name": "@mapbox/node-pre-gyp", | ||
| "description": "Node.js native addon binary install tool", | ||
| "version": "2.0.2-dev.1", | ||
| "version": "2.0.2-dev.2", | ||
| "keywords": [ | ||
@@ -26,3 +26,2 @@ "native", | ||
| "dependencies": { | ||
| "aws-sdk": "^2.1087.0", | ||
| "consola": "^3.2.3", | ||
@@ -39,2 +38,3 @@ "detect-libc": "^2.0.0", | ||
| "@mapbox/eslint-config-mapbox": "^5.0.1", | ||
| "aws-sdk": "^2.1087.0", | ||
| "codecov": "^3.8.3", | ||
@@ -41,0 +41,0 @@ "eslint": "^8.57.0", |
New alerts
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 12 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 12 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
192338
0.09%- Dependency count
7
-12.5%- Lines of code
5299
0.11%Worsened metrics
- Dev dependency count
12
9.09%Dependency changes
- Removed
aws-sdk@^2.1087.0- Removed
async-function@1.0.0(transitive)- Removed
async-generator-function@1.0.0(transitive)- Removed
available-typed-arrays@1.0.7(transitive)- Removed
aws-sdk@2.1693.0(transitive)- Removed
base64-js@1.5.1(transitive)- Removed
buffer@4.9.2(transitive)- Removed
call-bind@1.0.8(transitive)- Removed
call-bind-apply-helpers@1.0.2(transitive)- Removed
call-bound@1.0.4(transitive)- Removed
define-data-property@1.1.4(transitive)- Removed
dunder-proto@1.0.1(transitive)- Removed
es-define-property@1.0.1(transitive)- Removed
es-errors@1.3.0(transitive)- Removed
es-object-atoms@1.1.1(transitive)- Removed
events@1.1.1(transitive)- Removed
for-each@0.3.5(transitive)- Removed
function-bind@1.1.2(transitive)- Removed
generator-function@2.0.1(transitive)- Removed
get-intrinsic@1.3.1(transitive)- Removed
get-proto@1.0.1(transitive)- Removed
gopd@1.2.0(transitive)- Removed
has-property-descriptors@1.0.2(transitive)- Removed
has-symbols@1.1.0(transitive)- Removed
has-tostringtag@1.0.2(transitive)- Removed
hasown@2.0.2(transitive)- Removed
ieee754@1.1.13(transitive)- Removed
inherits@2.0.4(transitive)- Removed
is-arguments@1.2.0(transitive)- Removed
is-callable@1.2.7(transitive)- Removed
is-generator-function@1.1.2(transitive)- Removed
is-regex@1.2.1(transitive)- Removed
is-typed-array@1.1.15(transitive)- Removed
isarray@1.0.0(transitive)- Removed
jmespath@0.16.0(transitive)- Removed
math-intrinsics@1.1.0(transitive)- Removed
possible-typed-array-names@1.1.0(transitive)- Removed
punycode@1.3.2(transitive)- Removed
querystring@0.2.0(transitive)- Removed
safe-regex-test@1.1.0(transitive)- Removed
sax@1.2.1(transitive)- Removed
set-function-length@1.2.2(transitive)- Removed
url@0.10.3(transitive)- Removed
util@0.12.5(transitive)- Removed
uuid@8.0.0(transitive)- Removed
which-typed-array@1.1.20(transitive)- Removed
xml2js@0.6.2(transitive)- Removed
xmlbuilder@11.0.1(transitive)