agent.pw - npm Package Compare versions

Comparing version 0.0.1 to 0.1.0

package.json

 {
   "name": "agent.pw",
-  "version": "0.0.1",
-  "description": "agent.pw",
-  "main": "index.js"
+  "version": "0.1.0",
+  "description": "CLI for agent.pw — the password manager for AI agents",
+  "type": "module",
+  "license": "FSL-1.1-MIT",
+  "bin": {
+    "agent.pw": "./dist/index.js"
+  },
+  "files": [
+    "dist"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/smithery-ai/agent.pw",
+    "directory": "packages/cli"
+  },
+  "engines": {
+    "node": ">=20"
+  },
+  "scripts": {
+    "build": "tsc -p tsconfig.json --noEmit",
+    "compile": "bun build src/index.ts --outdir dist --target node --format esm --banner '#!/usr/bin/env node'",
+    "compile:bin": "bun build --compile src/index.ts --outfile dist/agent.pw",
+    "prepublishOnly": "bun run compile"
+  },
+  "devDependencies": {
+    "@agent.pw/sdk": "https://pkg.stainless.com/s/agent.pw-typescript/81f700c2e1cb502311f343261ee671a08d19677d/dist.tar.gz",
+    "@smithery/biscuit": "^1.0.0",
+    "@types/node": "^25.3.3",
+    "commander": "^14.0.3",
+    "typescript": "^5.9.3"
+  }
 }

index.js

-

New alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Misc. License Issues

License

A package's licensing information has fine-grained problems.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 4 instances in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Unidentified License

License

Something that seems like a license was found, but its contents could not be matched with a known license.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Fixed alerts

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

No License Found

License

License information could not be found.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

260825

263359.6%

Lines of code

7007

Infinity%

Is type module

Yes

NaN

Worsened metrics

Dev dependency count

5

Infinity%

Number of medium license alerts

1

Infinity%

Number of low supply chain risk alerts

14

1300%

Number of medium supply chain risk alerts

22

2100%

No dependency changes