application-config
Advanced tools
Comparing version 0.1.0 to 0.1.1
{ | ||
"name": "application-config", | ||
"version": "0.1.0", | ||
"version": "0.1.1", | ||
"license": "MIT", | ||
"author": "Linus Unnebäck <linus@folkdatorn.se>", | ||
"main": "index.js", | ||
"repository": { | ||
"type": "git", | ||
"url": "http://github.com/LinusU/node-application-config.git" | ||
}, | ||
"dependencies": { | ||
@@ -9,3 +16,6 @@ "mkdirp": "^0.5.0" | ||
"mocha": "^2.1.0" | ||
}, | ||
"scripts": { | ||
"test": "mocha" | ||
} | ||
} |
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
No contributors or author data
MaintenancePackage does not specify a list of contributors or an author in package.json.
Found 1 instance in 1 package
No bug tracker
MaintenancePackage does not have a linked bug tracker in package.json.
Found 1 instance in 1 package
No repository
Supply chain riskPackage does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.
Found 1 instance in 1 package
No tests
QualityPackage does not have any tests. This is a strong signal of a poorly maintained or low quality package.
Found 1 instance in 1 package
No website
QualityPackage does not have a website.
Found 1 instance in 1 package
5346
0
1
12