@qoder-ai/qodercli
Advanced tools
@qoder-ai/qodercli - npm Package Compare versions
+6
-1
| { | ||
| "name": "@qoder-ai/qodercli", | ||
| "version": "1.0.1", | ||
| "version": "1.0.2-beta1", | ||
| "description": "Qoder AI CLI - AI-powered coding assistant", | ||
@@ -40,2 +40,7 @@ "author": "Qoder AI", | ||
| }, | ||
| "dependencies": { | ||
| "@ali/qoder-config-service-sdk": "^0.1.2", | ||
| "@modelcontextprotocol/sdk": "^1.23.0", | ||
| "zod": "^3.25.76" | ||
| }, | ||
| "scripts": { | ||
@@ -42,0 +47,0 @@ "postinstall": "node postinstall.cjs" |
Sorry, the diff of this file is too big to display
New alerts
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
AI-detected potential code anomaly
Supply chain riskAI has identified unusual behaviors that may pose a security risk.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
AI-detected potential code anomaly
Supply chain riskAI has identified unusual behaviors that may pose a security risk.
Found 2 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
55
-1.79%Worsened metrics
- Total package byte prevSize
39274774
-1.04%- Dependency count
3
Infinity%- Number of low quality alerts
4
33.33%Dependency changes
+ Added
zod@^3.25.76+ Added
@hono/node-server@1.19.14(transitive)+ Added
@modelcontextprotocol/sdk@1.29.0(transitive)+ Added
accepts@2.0.0(transitive)+ Added
ajv@8.20.0(transitive)+ Added
ajv-formats@3.0.1(transitive)+ Added
async-function@1.0.0(transitive)+ Added
async-generator-function@1.0.0(transitive)+ Added
body-parser@2.2.2(transitive)+ Added
bytes@3.1.2(transitive)+ Added
call-bind-apply-helpers@1.0.2(transitive)+ Added
call-bound@1.0.4(transitive)+ Added
content-disposition@1.1.0(transitive)+ Added
content-type@1.0.52.0.0(transitive)+ Added
cookie@0.7.2(transitive)+ Added
cookie-signature@1.2.2(transitive)+ Added
cors@2.8.6(transitive)+ Added
cross-spawn@7.0.6(transitive)+ Added
debug@4.4.3(transitive)+ Added
depd@2.0.0(transitive)+ Added
dunder-proto@1.0.1(transitive)+ Added
ee-first@1.1.1(transitive)+ Added
encodeurl@2.0.0(transitive)+ Added
es-define-property@1.0.1(transitive)+ Added
es-errors@1.3.0(transitive)+ Added
es-object-atoms@1.1.2(transitive)+ Added
escape-html@1.0.3(transitive)+ Added
etag@1.8.1(transitive)+ Added
eventsource@3.0.7(transitive)+ Added
eventsource-parser@3.0.8(transitive)+ Added
express@5.2.1(transitive)+ Added
express-rate-limit@8.5.2(transitive)+ Added
fast-deep-equal@3.1.3(transitive)+ Added
fast-uri@3.1.2(transitive)+ Added
finalhandler@2.1.1(transitive)+ Added
forwarded@0.2.0(transitive)+ Added
fresh@2.0.0(transitive)+ Added
function-bind@1.1.2(transitive)+ Added
generator-function@2.0.1(transitive)+ Added
get-intrinsic@1.3.1(transitive)+ Added
get-proto@1.0.1(transitive)+ Added
gopd@1.2.0(transitive)+ Added
has-symbols@1.1.0(transitive)+ Added
hasown@2.0.3(transitive)+ Added
hono@4.12.22(transitive)+ Added
http-errors@2.0.1(transitive)+ Added
iconv-lite@0.7.2(transitive)+ Added
inherits@2.0.4(transitive)+ Added
ip-address@10.2.0(transitive)+ Added
ipaddr.js@1.9.1(transitive)+ Added
is-promise@4.0.0(transitive)+ Added
isexe@2.0.0(transitive)+ Added
jose@6.2.3(transitive)+ Added
json-schema-traverse@1.0.0(transitive)+ Added
json-schema-typed@8.0.2(transitive)+ Added
math-intrinsics@1.1.0(transitive)+ Added
media-typer@1.1.0(transitive)+ Added
merge-descriptors@2.0.0(transitive)+ Added
mime-db@1.54.0(transitive)+ Added
mime-types@3.0.2(transitive)+ Added
ms@2.1.3(transitive)+ Added
negotiator@1.0.0(transitive)+ Added
object-assign@4.1.1(transitive)+ Added
object-inspect@1.13.4(transitive)+ Added
on-finished@2.4.1(transitive)+ Added
once@1.4.0(transitive)+ Added
parseurl@1.3.3(transitive)+ Added
path-key@3.1.1(transitive)+ Added
path-to-regexp@8.4.2(transitive)+ Added
pkce-challenge@5.0.1(transitive)+ Added
proxy-addr@2.0.7(transitive)+ Added
qs@6.15.2(transitive)+ Added
range-parser@1.2.1(transitive)+ Added
raw-body@3.0.2(transitive)+ Added
require-from-string@2.0.2(transitive)+ Added
router@2.2.0(transitive)+ Added
safer-buffer@2.1.2(transitive)+ Added
send@1.2.1(transitive)+ Added
serve-static@2.2.1(transitive)+ Added
setprototypeof@1.2.0(transitive)+ Added
shebang-command@2.0.0(transitive)+ Added
shebang-regex@3.0.0(transitive)+ Added
side-channel@1.1.0(transitive)+ Added
side-channel-list@1.0.1(transitive)+ Added
side-channel-map@1.0.1(transitive)+ Added
side-channel-weakmap@1.0.2(transitive)+ Added
statuses@2.0.2(transitive)+ Added
toidentifier@1.0.1(transitive)+ Added
type-is@2.1.0(transitive)+ Added
unpipe@1.0.0(transitive)+ Added
vary@1.1.2(transitive)+ Added
which@2.0.2(transitive)+ Added
wrappy@1.0.2(transitive)+ Added
zod@3.25.76(transitive)+ Added
zod-to-json-schema@3.25.2(transitive)