@shipengine/js-api - npm Package Compare versions

Comparing version 4.24.0 to 4.24.1-next.0

carriers/types.d.ts

@@ -9,2 +9,9 @@ import { Address } from "../addresses";
  */
+export type CarrierTermsStatus = "saved" | "not_found" | "already_saved" | "error";
+export type CarrierTermCategory = "funding_source" | "carrier" | "insurance";
+export type WalletTransactionType = "adjustment" | "purchase" | "reload" | "void";
+export type CarrierConnectionStatus = "PendingApproval" | "Approved";
+/**
+ * @category Entities
+ */
 export interface CarrierOption {
@@ -69,2 +76,3 @@ defaultValue: string;
     carrierId: string;
+    connectionStatus?: CarrierConnectionStatus;
     friendlyName: string;
@@ -102,3 +110,2 @@ fundingSourceId?: string;
 };
-export type WalletTransactionType = "adjustment" | "purchase" | "reload" | "void";
 export type WalletTransaction = {
@@ -130,5 +137,2 @@ amount: number;
  */
-/** @internal */
-export type CarrierTermsStatus = "saved" | "not_found" | "already_saved" | "error";
-export type CarrierTermCategory = "funding_source" | "carrier" | "insurance";
 export interface CarrierTerm {
@@ -140,3 +144,5 @@ status?: CarrierTermsStatus;
 }
-/** @internal */
+/**
+ * @category Responses
+ */
 export interface CarrierAutoFundingSettingsResponse {
@@ -143,0 +149,0 @@ autoPurchaseAmount: number;

package.json

 {
   "name": "@shipengine/js-api",
-  "version": "4.24.0",
+  "version": "4.24.1-next.0",
   "main": "./index.js",
@@ -5,0 +5,0 @@ "types": "./index.d.ts",

New alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Fixed alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

1614536

0.01%

Lines of code

45749

0.01%

Worsened metrics

Number of low quality alerts

2

100%

No dependency changes