allow-scripts
Advanced tools
allow-scripts - npm Package Compare versions
Comparing version 1.5.1 to 1.5.2
| { | ||
| "name": "allow-scripts", | ||
| "version": "1.5.1", | ||
| "version": "1.5.2", | ||
| "description": "Execute allowed `npm install` lifecycle scripts", | ||
@@ -20,3 +20,3 @@ "main": "lib/index.js", | ||
| "ansicolors": "0.3.x", | ||
| "libnpm": "2.x.x", | ||
| "libnpm": "3.x.x", | ||
| "semver": "6.x.x" | ||
@@ -27,7 +27,6 @@ }, | ||
| "@commitlint/config-conventional": "8.x.x", | ||
| "@hapi/code": "^5.3.1", | ||
| "@hapi/lab": "^19.1.0", | ||
| "@semantic-release/npm": "git+https://github.com/dominykas/semantic-release-npm.git#otp-url-with-version", | ||
| "@hapi/code": "6.x.x", | ||
| "@hapi/lab": "20.x.x", | ||
| "mkdirp": "0.5.x", | ||
| "rimraf": "2.x.x", | ||
| "rimraf": "3.x.x", | ||
| "semantic-release": "15.x.x", | ||
@@ -34,0 +33,0 @@ "sinon": "7.x.x" |
@@ -49,1 +49,2 @@ # allow-scripts | ||
| If a package has a lifecycle script, but is neither allowed nor ignored, `allow-scripts` will exit with an error. | ||
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
AI-detected potential security risk
Supply chain riskAI has determined that this package may contain potential security issues or vulnerabilities.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
AI-detected potential code anomaly
Supply chain riskAI has identified unusual behaviors that may pose a security risk.
Found 1 instance in 1 package
Improved metrics
- Dev dependency count
- decreased by-11.11%
8
- Number of lines in readme file
- increased by2.04%
50
- Number of low supply chain risk alerts
- decreased by-12.5%
7
Worsened metrics
- Total package byte prevSize
- decreased by-1.29%
8583
- Number of medium supply chain risk alerts
- increased by100%
2
Dependency changes
+ Addedenv-paths@2.2.1(transitive)
+ Addedlibnpm@3.0.1(transitive)
+ Addednode-gyp@5.1.1(transitive)
+ Addednopt@4.0.3(transitive)
+ Addednpm-lifecycle@3.1.5(transitive)
- Removedcacache@11.3.3(transitive)
- Removedlibnpm@2.0.1(transitive)
- Removedmake-fetch-happen@4.0.2(transitive)
- Removednode-gyp@4.0.0(transitive)
- Removednopt@3.0.6(transitive)
- Removednpm-lifecycle@2.1.1(transitive)
- Removednpm-registry-fetch@3.9.1(transitive)
- Removedsemver@5.3.0(transitive)
Updatedlibnpm@3.x.x