archivrco-sign
Advanced tools
archivrco-sign - npm Package Compare versions
Comparing version 0.0.3 to 0.0.4
@@ -26,3 +26,3 @@ /* jshint laxcomma: true, node: true */ | ||
| this.secret = ArchivrcoSign.ARCHIVRCO_SECRET_KEY; | ||
| this.secret = ArchivrcoSign.ARCHIVRCO_SECRET; | ||
| } | ||
@@ -35,3 +35,3 @@ | ||
| ArchivrcoSign.ARCHIVRCO_SECRET_KEY = process.env.ARCHIVRCO_SECRET_KEY; | ||
| ArchivrcoSign.ARCHIVRCO_SECRET = process.env.ARCHIVRCO_SECRET; | ||
@@ -38,0 +38,0 @@ |
| { | ||
| "name": "archivrco-sign", | ||
| "version": "0.0.3", | ||
| "version": "0.0.4", | ||
| "description": "Signature utility for Archivr.co", | ||
@@ -11,3 +11,3 @@ "main": "index.js", | ||
| "type": "git", | ||
| "url": "git@github.com:nowk/archivrco-sign.js.git" | ||
| "url": "git@github.com:nowk/archivr.co-sign.js.git" | ||
| }, | ||
@@ -17,5 +17,5 @@ "author": "Yung Hwa Kwon <yung.kwon@damncarousel.com> (http://damncarousel.com/)", | ||
| "bugs": { | ||
| "url": "https://github.com/nowk/archivrco-sign.js/issues" | ||
| "url": "https://github.com/nowk/archivr.co-sign.js/issues" | ||
| }, | ||
| "homepage": "https://github.com/nowk/archivrco-sign.js", | ||
| "homepage": "https://github.com/nowk/archivr.co-sign.js", | ||
| "devDependencies": { | ||
@@ -22,0 +22,0 @@ "chai": "~1.9.0", |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
AI-detected possible typosquat
Supply chain riskAI has identified this package as a potential typosquat of a more popular package. This suggests that the package may be intentionally mimicking another package's name, description, or other metadata.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
No bug tracker
MaintenancePackage does not have a linked bug tracker in package.json.
Found 1 instance in 1 package
No website
QualityPackage does not have a website.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
No bug tracker
MaintenancePackage does not have a linked bug tracker in package.json.
Found 1 instance in 1 package
No website
QualityPackage does not have a website.
Found 1 instance in 1 package
Worsened metrics
- Total package byte prevSize
- decreased by-0.26%
3477
- Number of medium supply chain risk alerts
- increased byInfinity%
1