Comparing version 0.0.2 to 0.1.0
{ | ||
"name": "axe", | ||
"version": "0.0.2", | ||
"description": "simple, immutable devops", | ||
"version": "0.1.0", | ||
"description": "Painlessly create AWS CloudFormation stacks", | ||
"author": "Jason Maurer", | ||
@@ -10,7 +10,50 @@ "license": "MIT", | ||
"type": "git", | ||
"url": "https://github.com/jsonmaur/axe.git" | ||
"url": "git+https://github.com/jsonmaur/axe.git" | ||
}, | ||
"scripts": {}, | ||
"devDependencies": {}, | ||
"dependencies": {} | ||
"keywords": [ | ||
"aws", | ||
"amazon web services", | ||
"hosting", | ||
"vps", | ||
"cloudformation", | ||
"stack", | ||
"infra", | ||
"infrastructure", | ||
"devops", | ||
"server" | ||
], | ||
"files": [ | ||
"bin/", | ||
"lib/", | ||
"license", | ||
"readme.md" | ||
], | ||
"main": "lib/index.js", | ||
"bin": { | ||
"axe": "bin/axe" | ||
}, | ||
"scripts": { | ||
"test:lint": "standard --verbose | snazzy", | ||
"test": "npm-run-all test:*", | ||
"build": "rm -rf lib && babel src -d lib", | ||
"watch": "npm run build -- -w", | ||
"prepublish": "npm run build" | ||
}, | ||
"dependencies": { | ||
"aws-sdk": "2.6.6", | ||
"dotenv": "2.0.0", | ||
"minimist": "1.2.0" | ||
}, | ||
"devDependencies": { | ||
"babel-cli": "6.16.0", | ||
"babel-preset-es2015": "6.16.0", | ||
"npm-run-all": "3.1.0", | ||
"snazzy": "5.0.0", | ||
"standard": "8.3.0" | ||
}, | ||
"babel": { | ||
"presets": [ | ||
"es2015" | ||
] | ||
} | ||
} |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 5 instances in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
No README
QualityPackage does not have a README. This may indicate a failed publish or a low quality package.
Found 1 instance in 1 package
11575
8
264
0
10
1
3
5
10
+ Addedaws-sdk@2.6.6
+ Addeddotenv@2.0.0
+ Addedminimist@1.2.0
+ Addedaws-sdk@2.6.6(transitive)
+ Addedbase64-js@1.5.1(transitive)
+ Addedbuffer@4.9.1(transitive)
+ Addedcrypto-browserify@1.0.9(transitive)
+ Addeddotenv@2.0.0(transitive)
+ Addedieee754@1.2.1(transitive)
+ Addedisarray@1.0.0(transitive)
+ Addedjmespath@0.15.0(transitive)
+ Addedlodash@3.5.0(transitive)
+ Addedminimist@1.2.0(transitive)
+ Addedpunycode@1.3.2(transitive)
+ Addedquerystring@0.2.0(transitive)
+ Addedsax@1.1.5(transitive)
+ Addedurl@0.10.3(transitive)
+ Addedxml2js@0.4.15(transitive)
+ Addedxmlbuilder@2.6.2(transitive)