@solid/lit-term
Advanced tools
@@ -22,5 +22,5 @@ name: CD | ||
| - name: Remove npm tag for the deleted branch | ||
| run: npm dist-tag rm lit-solid $TAG_SLUG | ||
| run: npm dist-tag rm @solid/lit-term $TAG_SLUG | ||
| env: | ||
| NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} | ||
| - run: echo "Package tag \`$TAG_SLUG\` unpublished." |
@@ -5,4 +5,6 @@ name: CD | ||
| push: | ||
| # This excludes tags from CD | ||
| branches: | ||
| tags: | ||
| # This excludes tags from CD, as they should be published through a release | ||
| '!v*' | ||
@@ -9,0 +11,0 @@ env: |
@@ -18,3 +18,3 @@ on: | ||
| node-version: '12.12.0' | ||
| registry-url: https://npm.pkg.github.com/ | ||
| registry-url: 'https://registry.npmjs.org' | ||
| scope: '@solid' | ||
@@ -21,0 +21,0 @@ - name: NPM install, test and publish |
+1
-1
| { | ||
| "name": "@solid/lit-term", | ||
| "version": "0.4.1-release-137356944-6.0", | ||
| "version": "0.4.1", | ||
| "description": "Very basic implementation of LIT Vocab Term, with minimal RDF library dependencies.", | ||
@@ -5,0 +5,0 @@ "main": "dist/index.js", |
+1
-1
@@ -24,3 +24,3 @@ # The Linked data Integration Toolkit (LIT) for JavaScript | ||
| cd demo | ||
| npm install --registry=https://npm.pkg.github.com/inrupt | ||
| npm install | ||
| node index.js | ||
@@ -27,0 +27,0 @@ ``` |
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 3 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Unidentified License
LicenseSomething that seems like a license was found, but its contents could not be matched with a known license.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 3 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Unidentified License
LicenseSomething that seems like a license was found, but its contents could not be matched with a known license.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
278302
0