anygram - npm Package Compare versions

Comparing version 0.0.2 to 0.0.3

index.js

 var punch = require('./punch');
 var stun = require('./stun');
 
-exports.connect = (irc, to, rinfo) => new Promise((res, rej) =>
+exports.connect = (irc, to, rinfo, punchTime) => new Promise((res, rej) =>
 stun('stun.ucsb.edu').then(socket => {
@@ -19,3 +19,3 @@ var onrinfo = (rinfo) => {
   if (rinfo) {
-    socket.linfo.punchTime = rinfo.punchTime = Date.now() + 10000;
+    socket.linfo.punchTime = rinfo.punchTime = Date.now() + (punchTime || 10000);
     onrinfo(rinfo);
@@ -35,29 +35,17 @@ } else {
 
-exports.Socket = function (_socket, lport, rport, onrecv) {
-  this._socket = _socket;
+exports.send = (socket, msg, lport, rport) => {
+  var buf = new Buffer(4);
+  buf.writeUInt16BE(lport, 0);
+  buf.writeUInt16BE(rport, 2);
+  socket.send(Buffer.concat([buf, msg]), socket.rinfo.port, socket.rinfo.address);
+};
 
-  this.sendBuf = new Buffer(4);
-  this.sendBuf.writeUInt16LE(lport, 0);
-  this.sendBuf.writeUInt16LE(rport, 2);
-
-  this.recvBuf = new Buffer(4);
-  this.recvBuf.writeUInt16LE(rport, 0);
-  this.recvBuf.writeUInt16LE(lport, 2);
-  this.recvNum = this.recvBuf.readUInt32LE(0);
-
-  this.onrecv = onrecv;
-  this.onmsg = (msg) => {
-    if (msg.length > 4 && msg.slice(0, 4).readUInt32LE(0) === this.recvNum)
-      this.onrecv(msg.slice(4));
-  };
-
-  this._socket.on('message', this.onmsg);
-  this._socket.on('error', () => {
-    this._socket.removeListener('message', this.onmsg);
+exports.onrecv = (socket, cb) => {
+  socket.on('message', (msg) => {
+    if (msg.length <= 4)
+      return ;
+    var rport = msg.readUInt16BE(0);
+    var lport = msg.readUInt16BE(2);
+    cb(msg.slice(4), lport, rport);
   });
 };
-
-exports.Socket.prototype.send = function (msg) {
-  this._socket.send(Buffer.concat(this.sendBuf, msg),
-    this._socket.rinfo.port, this._socket.rinfo.address);
-};

package.json

 {
   "name": "anygram",
-  "version": "0.0.2",
+  "version": "0.0.3",
   "description": "",
@@ -5,0 +5,0 @@ "main": "index.js",

punch.js

@@ -30,16 +30,20 @@ var code = ':P';
 
-  for (var epoch = 0; epoch < 3; ++epoch) {
-    for (var i = 0; i <= 300; ++i) {
-      setTimeout(((i) => () => {
-        if (socket.rinfo.pong) return ;
-        if (socket.linfo.type === 'Symmetric') {
-          send(socket);
-        } else {
-          send(socket, socket.rinfo.port + i);
-          send(socket, socket.rinfo.port - i);
-        }
-      })(i), 3 * i + 1000 * epoch);
+  setTimeout(() => {
+    if (socket.rinfo.pong) return ;
+
+    for (var epoch = 0; epoch < 3; ++epoch) {
+      for (var i = 0; i <= 300; ++i) {
+        setTimeout(((i) => () => {
+          if (socket.rinfo.pong) return ;
+          if (socket.linfo.type === 'Symmetric') {
+            send(socket);
+          } else {
+            send(socket, socket.rinfo.port + i);
+            send(socket, socket.rinfo.port - i);
+          }
+        })(i), 3 * i + 1000 * epoch);
+      }
     }
-  }
-  setTimeout(() => rej('UDP hole punching failed'), 3000);
+    setTimeout(() => rej('UDP hole punching failed'), 3000);
+  }, 1000);
 });

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Native code

Supply chain risk

Contains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

26225

increased by424.6%

Number of package files

11

increased by37.5%

Lines of code

167

increased by15.97%

Worsened metrics

Number of medium supply chain risk alerts

4

increased by300%

No dependency changes