akkeris - npm Package Compare versions

Comparing version 2.7.9 to 2.8.0

package.json

 {
   "name": "akkeris",
-  "version": "2.7.9",
+  "version": "2.8.0",
   "description": "Akkeris CLI",
@@ -21,7 +21,7 @@ "main": "aka.js",
     "cliui": "^3.2.0",
-    "colors": "^1.3.2",
+    "colors": "^1.3.3",
     "crypto-js": "^3.1.9-1",
     "netrc": "^0.1.4",
-    "yargs": "https://github.com/trevorlinton/yargs#fork-head"
+    "yargs": "git+https://github.com/trevorlinton/yargs.git#fork-head"
   }
 }

plugins/auth/index.js

@@ -14,3 +14,4 @@ "use strict"
       'Content-Type':'application/json',
-      'Accept':'application/json'
+      'Accept':'application/json',
+      'User-Agent':'akkeris-cli',
     };
@@ -21,3 +22,3 @@ if(OTP) {
     appkit.http.post(
-      JSON.stringify({'notes':'Akkeris CLI Token (' + require('os').hostname() + ')', 'notes_url':'', 'fingerprint':''}), 
+      JSON.stringify({'notes':'Akkeris CLI Token (' + require('os').hostname() + ')', 'note':'Akkeris CLI Token', 'notes_url':'', 'fingerprint':''}), 
       `https://${appkit.config.akkeris_auth_host}/authorizations`, 
@@ -30,7 +31,7 @@ headers,
         }
-        if(err.body && err.body.indexOf('2FA') > -1) {
-          let otp_header = Object.keys(err.headers).filter((x) => { return x.toLowerCase().indexOf("otp") !== -1 && x.toLowerCase().startsWith("x-") })
+        if(err.body && err.body.indexOf('2FA') > -1 || err.body.indexOf('OTP')) {
+          let otp_header = Object.keys(err.headers).filter((x) => { return x.toLowerCase().indexOf("-otp") !== -1 && x.toLowerCase().startsWith("x-") })
           if(otp_header.length !== 1) {
             loader.end('error')
-            return appkit.terminal.error("Unable to determine type of two factor OTP.")
+            return appkit.terminal.error("Unable to determine type of two factor OTP: " + err.body)
           }
@@ -37,0 +38,0 @@ loader.end('ok');

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Git dependency

Supply chain risk

Contains a dependency which resolves to a remote git URL. Dependencies fetched from git URLs are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

HTTP dependency

Supply chain risk

Contains a dependency which resolves to a remote HTTP URL which could be used to inject untrusted code and reduce overall package reliability.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

212612

increased by0.05%

Lines of code

5688

increased by0.02%

Number of medium supply chain risk alerts

16

decreased by-5.88%

Dependency changes

• Updatedcolors@^1.3.3

• Updatedyargs@git+https://github.com/trevorlinton/yargs.git#fork-head