@vercel/ruby
Advanced tools
@vercel/ruby - npm Package Compare versions
+3
-3
| { | ||
| "name": "@vercel/ruby", | ||
| "author": "Nathan Cahill <nathan@nathancahill.com>", | ||
| "version": "1.3.28", | ||
| "version": "1.3.29", | ||
| "license": "MIT", | ||
@@ -25,3 +25,3 @@ "main": "./dist/index", | ||
| "@types/semver": "6.0.0", | ||
| "@vercel/build-utils": "5.3.2", | ||
| "@vercel/build-utils": "5.4.0", | ||
| "@vercel/ncc": "0.24.0", | ||
@@ -33,3 +33,3 @@ "execa": "2.0.4", | ||
| }, | ||
| "gitHead": "6700630feb23bdb4e94ea727911a9e10aa546361" | ||
| "gitHead": "e7e0a55b72bc73c26661f7b2a3caa0884a5d1764" | ||
| } |
New alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 9 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 9 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package