@minkimcello/georgia - npm Package Compare versions

Comparing version 1.11.0 to 1.12.0

package.json

 {
   "name": "@minkimcello/georgia",
-  "version": "1.11.0",
-  "description": "yeah",  "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1"
+  "version": "1.12.0",
+  "bin": {
+    "georgia": "./echoer.js"
   }
-}
+}

New alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 5 instances in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 2 instances in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 23 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

No tests

Quality

Package does not have any tests. This is a strong signal of a poorly maintained or low quality package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

665235

increased by410538.89%

Number of package files

25

increased by2400%

Lines of code

23916

increased byInfinity%

Number of low quality alerts

1

decreased by-50%

Number of medium quality alerts

1

decreased by-50%

Number of lines in readme file

24

increased byInfinity%

Worsened metrics

Number of low supply chain risk alerts

49

increased by4800%

Number of medium supply chain risk alerts

21

increased by2000%

No dependency changes