@mapbox/node-pre-gyp
Advanced tools
@mapbox/node-pre-gyp - npm Package Compare versions
| - Test the release workflow | ||
+3
-0
@@ -5,2 +5,5 @@ # node-pre-gyp changelog | ||
| ## 2.0.4-pre.0 | ||
| - Test the release workflow | ||
| ## 2.0.3 | ||
@@ -7,0 +10,0 @@ - Revert "Bump nopt from 8.0.0 to 9.0.0 (#919)" (#925)[https://github.com/mapbox/node-pre-gyp/pull/925] |
@@ -3122,2 +3122,22 @@ { | ||
| }, | ||
| "20.19.2": { | ||
| "node_abi": 115, | ||
| "v8": "11.3" | ||
| }, | ||
| "20.19.3": { | ||
| "node_abi": 115, | ||
| "v8": "11.3" | ||
| }, | ||
| "20.19.4": { | ||
| "node_abi": 115, | ||
| "v8": "11.3" | ||
| }, | ||
| "20.19.5": { | ||
| "node_abi": 115, | ||
| "v8": "11.3" | ||
| }, | ||
| "20.19.6": { | ||
| "node_abi": 115, | ||
| "v8": "11.3" | ||
| }, | ||
| "21.0.0": { | ||
@@ -3251,2 +3271,38 @@ "node_abi": 120, | ||
| }, | ||
| "22.15.1": { | ||
| "node_abi": 127, | ||
| "v8": "12.4" | ||
| }, | ||
| "22.16.0": { | ||
| "node_abi": 127, | ||
| "v8": "12.4" | ||
| }, | ||
| "22.17.0": { | ||
| "node_abi": 127, | ||
| "v8": "12.4" | ||
| }, | ||
| "22.17.1": { | ||
| "node_abi": 127, | ||
| "v8": "12.4" | ||
| }, | ||
| "22.18.0": { | ||
| "node_abi": 127, | ||
| "v8": "12.4" | ||
| }, | ||
| "22.19.0": { | ||
| "node_abi": 127, | ||
| "v8": "12.4" | ||
| }, | ||
| "22.20.0": { | ||
| "node_abi": 127, | ||
| "v8": "12.4" | ||
| }, | ||
| "22.21.0": { | ||
| "node_abi": 127, | ||
| "v8": "12.4" | ||
| }, | ||
| "22.21.1": { | ||
| "node_abi": 127, | ||
| "v8": "12.4" | ||
| }, | ||
| "23.0.0": { | ||
@@ -3304,6 +3360,90 @@ "node_abi": 131, | ||
| }, | ||
| "23.11.1": { | ||
| "node_abi": 131, | ||
| "v8": "12.9" | ||
| }, | ||
| "24.0.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.0.1": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.0.2": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.1.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.2.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.3.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.4.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.4.1": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.5.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.6.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.7.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.8.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.9.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.10.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.11.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.11.1": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "24.12.0": { | ||
| "node_abi": 137, | ||
| "v8": "13.6" | ||
| }, | ||
| "25.0.0": { | ||
| "node_abi": 141, | ||
| "v8": "14.1" | ||
| }, | ||
| "25.1.0": { | ||
| "node_abi": 141, | ||
| "v8": "14.1" | ||
| }, | ||
| "25.2.0": { | ||
| "node_abi": 141, | ||
| "v8": "14.1" | ||
| }, | ||
| "25.2.1": { | ||
| "node_abi": 141, | ||
| "v8": "14.1" | ||
| } | ||
| } | ||
| } |
+1
-1
| { | ||
| "name": "@mapbox/node-pre-gyp", | ||
| "description": "Node.js native addon binary install tool", | ||
| "version": "2.0.3", | ||
| "version": "2.0.4-pre.0", | ||
| "keywords": [ | ||
@@ -6,0 +6,0 @@ "native", |
New alerts
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 12 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 12 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
194950
1.08%- Number of package files
42
2.44%- Lines of code
5444
2.62%Worsened metrics
- Number of low quality alerts
2
100%- Number of medium supply chain risk alerts
7
16.67%