@rushstack/ts-command-line - npm Package Compare versions

Comparing version 0.0.0 to 4.3.11

package.json

 {
-  "license": "MIT",
-  "name": "@rushstack/ts-command-line",
-  "version": "0.0.0"
+	"name": "@rushstack/ts-command-line",
+	"version": "4.3.11",
+	"description": "An object-oriented command-line parser for TypeScript",
+	"repository": {
+		"type": "git",
+		"url": "https://github.com/microsoft/rushstack/tree/master/libraries/ts-command-line"
+	},
+	"main": "lib/index.js",
+	"typings": "dist/ts-command-line.d.ts",
+	"scripts": {
+		"build": "gulp test --clean"
+	},
+	"license": "MIT",
+	"dependencies": {
+		"@types/argparse": "1.0.33",
+		"argparse": "~1.0.9",
+		"colors": "~1.2.1"
+	},
+	"devDependencies": {
+		"@types/jest": "23.3.11",
+		"@types/node": "10.17.13",
+		"gulp": "~4.0.2",
+		"@microsoft/node-library-build": "6.3.11",
+		"@microsoft/rush-stack-compiler-3.5": "0.3.11",
+		"@rushstack/eslint-config": "0.5.4"
+	}
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

218924

increased by257457.65%

Number of package files

39

increased by3800%

Lines of code

3172

increased byInfinity%

Number of low quality alerts

1

decreased by-50%

Number of medium quality alerts

0

decreased by-100%

Number of lines in readme file

200

increased byInfinity%

Number of low supply chain risk alerts

0

decreased by-100%

Worsened metrics

Dependency count

3

increased byInfinity%

Dev dependency count

6

increased byInfinity%

Number of medium supply chain risk alerts

2

increased by100%

Dependency changes

• + Added@types/argparse@1.0.33

• + Addedargparse@~1.0.9

• + Addedcolors@~1.2.1

• + Added@types/argparse@1.0.33(transitive)

• + Addedargparse@1.0.10(transitive)

• + Addedcolors@1.2.5(transitive)

• + Addedsprintf-js@1.0.3(transitive)