@oclif/core - npm Package Compare versions

Comparing version 4.0.31 to 4.0.32

lib/config/ts-path.js

@@ -275,3 +275,5 @@ "use strict";
         debug(`Skipping typescript path lookup for ${root} because it's an ESM module (NODE_ENV: ${process.env.NODE_ENV}, root plugin module type: ${rootPlugin?.moduleType})`);
-        if (plugin?.type === 'link')
+        const warningIsDisabled = process.env.OCLIF_DISABLE_LINKED_ESM_WARNING && (0, util_1.isTruthy)(process.env.OCLIF_DISABLE_LINKED_ESM_WARNING);
+        // Only warn if the plugin is linked AND the warning is not disabled
+        if (plugin?.type === 'link' && !warningIsDisabled)
             (0, warn_1.memoizedWarn)(`${plugin?.name} is a linked ESM module and cannot be auto-transpiled. Existing compiled source will be used instead.`);
@@ -278,0 +280,0 @@ return orig;

package.json

 {
   "name": "@oclif/core",
   "description": "base library for oclif CLIs",
-  "version": "4.0.31",
+  "version": "4.0.32",
   "author": "Salesforce",
@@ -59,3 +59,3 @@ "bugs": "https://github.com/oclif/core/issues",
     "madge": "^6.1.0",
-    "mocha": "^10.7.3",
+    "mocha": "^10.8.2",
     "nyc": "^15.1.0",
@@ -62,0 +62,0 @@ "prettier": "^3.3.3",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

403027

increased by0.06%

Lines of code

10137

increased by0.02%

Worsened metrics

Number of low supply chain risk alerts

40

increased by5.26%

No dependency changes