@ydv/mongo - npm Package Compare versions

Comparing version 1.1.1 to 1.1.2

index.js

@@ -5,12 +5,6 @@ const omit = require('lodash/omit')
 
-let _mongoUrl
-
 exports.db = mongoose
 
-exports.setMongoUrl = url => {
-  _mongoUrl = url
-}
+exports.connect = once(url => mongoose.connect(url || process.env.MONGO_URL))
 
-exports.connect = once(url => mongoose.connect(url || _mongoUrl))
-
 exports.Types = mongoose.Schema.Types
@@ -17,0 +11,0 @@

package.json

 {
   "name": "@ydv/mongo",
-  "version": "1.1.1",
+  "version": "1.1.2",
   "repository": "YottaDV/mongo",
@@ -5,0 +5,0 @@ "scripts": {

readme.md

@@ -9,2 +9,4 @@ ### @ydv/mongo
 
+**Expects process.env.MONGO_URL to be set for connection!!**
+
 ```
@@ -11,0 +13,0 @@ const { db, Types, Model, Schema } = require('@ydv/mongo)

New alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

1811

0.39%

Number of lines in readme file

22

10%

Worsened metrics

Lines of code

33

-10.81%

Number of low supply chain risk alerts

2

100%

No dependency changes