@railgun-community/curve25519-scalarmult-rsjs
Advanced tools
Comparing version 0.2.3 to 0.2.4
{ | ||
"name": "@railgun-community/curve25519-scalarmult-rsjs", | ||
"version": "0.2.3", | ||
"version": "0.2.4", | ||
"description": "Node.js addon for Curve25519 scalar multiplication written in Rust", | ||
@@ -17,7 +17,7 @@ "author": "RAILGUN Contributors", | ||
"files": [ | ||
"index.js", | ||
"build.rs", | ||
"postinstall.js", | ||
"tools/*.js", | ||
"src/*", | ||
"prebuilds/*", | ||
"build.rs", | ||
"index.js", | ||
"Cargo.lock", | ||
@@ -32,5 +32,5 @@ "Cargo.toml" | ||
"install": "npm run build-release", | ||
"postinstall": "node postinstall.js", | ||
"build-debug": "rimraf dist && nj-cli build --out=.", | ||
"build-release": "rimraf dist && nj-cli build --release --out=.", | ||
"postinstall": "node tools/postinstall.js", | ||
"build-debug": "node tools/build-debug.js", | ||
"build-release": "node tools/build-release.js", | ||
"test": "npm run build-debug && node --test", | ||
@@ -37,0 +37,0 @@ "prepublishOnly": "node tools/check-prebuilds.js" |
@@ -17,2 +17,8 @@ # Node.js addon for Curve25519 Scalarmult, written in Rust | ||
## Compiling curve25519-scalarmult-rsjs | ||
This project is automatically compiled using Rust and [`node-bindgen`](https://github.com/infinyon/node-bindgen/) (a.k.a `nj-cli`) when you run `npm install`. If you have cloned this project and want to compile it manually, you can run `npm run build-debug` or `npm run build-release`. | ||
**If you want to disable** the automatic compilation during npm install, then set the environment variable `DONT_COMPILE_NODE_ADDON=@railgun-community/curve25519-scalarmult-rsjs` (this can be a comma-separated list of packages to skip compiling). | ||
## Developing curve25519-scalarmult-rsjs | ||
@@ -19,0 +25,0 @@ |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 1 instance in 1 package
14677181
17
110
99
5
2