@vercel/ruby
Advanced tools
@vercel/ruby - npm Package Compare versions
+3
-3
| { | ||
| "name": "@vercel/ruby", | ||
| "author": "Nathan Cahill <nathan@nathancahill.com>", | ||
| "version": "1.3.4", | ||
| "version": "1.3.5-canary.0", | ||
| "license": "MIT", | ||
@@ -25,3 +25,3 @@ "main": "./dist/index", | ||
| "@types/semver": "6.0.0", | ||
| "@vercel/build-utils": "2.17.0", | ||
| "@vercel/build-utils": "3.0.1-canary.1", | ||
| "@vercel/ncc": "0.24.0", | ||
@@ -33,3 +33,3 @@ "execa": "2.0.4", | ||
| }, | ||
| "gitHead": "15c7ad241a44d037ceed0101b89e3a73f09fab2b" | ||
| "gitHead": "4c20218e05122c439e5fa4f4997e9c5a5c7a93e2" | ||
| } |
New alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 9 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Fixed alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 9 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
244406
0.01%Worsened metrics
- Number of low quality alerts
1
Infinity%