@nx/js - npm Package Compare versions
+4
-4
| { | ||
| "name": "@nx/js", | ||
| "version": "22.7.0", | ||
| "version": "23.0.0-beta.0", | ||
| "private": false, | ||
@@ -43,4 +43,4 @@ "description": "The JS plugin for Nx contains executors and generators that provide the best experience for developing JavaScript and TypeScript projects. ", | ||
| "@babel/runtime": "^7.22.6", | ||
| "@nx/devkit": "22.7.0", | ||
| "@nx/workspace": "22.7.0", | ||
| "@nx/devkit": "23.0.0-beta.0", | ||
| "@nx/workspace": "23.0.0-beta.0", | ||
| "@zkochan/js-yaml": "0.0.7", | ||
@@ -65,3 +65,3 @@ "babel-plugin-const-enum": "^1.0.1", | ||
| "devDependencies": { | ||
| "nx": "22.7.0" | ||
| "nx": "23.0.0-beta.0" | ||
| }, | ||
@@ -68,0 +68,0 @@ "peerDependencies": { |
New alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 20 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Fixed alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 20 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
654592
0Worsened metrics
- Number of low quality alerts
1
Infinity%Dependency changes
+ Added
@nx/devkit@23.0.0-beta.0(transitive)+ Added
@nx/nx-darwin-arm64@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/nx-darwin-x64@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/nx-freebsd-x64@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/nx-linux-arm-gnueabihf@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/nx-linux-arm64-gnu@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/nx-linux-arm64-musl@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/nx-linux-x64-gnu@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/nx-linux-x64-musl@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/nx-win32-arm64-msvc@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/nx-win32-x64-msvc@23.0.0-pr.35465.2bc2643(transitive)+ Added
@nx/workspace@23.0.0-beta.0(transitive)+ Added
balanced-match@4.0.4(transitive)+ Added
brace-expansion@5.0.6(transitive)+ Added
nx@23.0.0-pr.35465.2bc2643(transitive)- Removed
@nx/devkit@22.7.0(transitive)- Removed
@nx/nx-darwin-arm64@22.7.022.7.1(transitive)- Removed
@nx/nx-darwin-x64@22.7.022.7.1(transitive)- Removed
@nx/nx-freebsd-x64@22.7.022.7.1(transitive)- Removed
@nx/nx-linux-arm-gnueabihf@22.7.022.7.1(transitive)- Removed
@nx/nx-linux-arm64-gnu@22.7.022.7.1(transitive)- Removed
@nx/nx-linux-arm64-musl@22.7.022.7.1(transitive)- Removed
@nx/nx-linux-x64-gnu@22.7.022.7.1(transitive)- Removed
@nx/nx-linux-x64-musl@22.7.022.7.1(transitive)- Removed
@nx/nx-win32-arm64-msvc@22.7.022.7.1(transitive)- Removed
@nx/nx-win32-x64-msvc@22.7.022.7.1(transitive)- Removed
@nx/workspace@22.7.0(transitive)- Removed
nx@22.7.022.7.1(transitive)Updated
@nx/devkit@23.0.0-beta.0Updated
@nx/workspace@23.0.0-beta.0