bal-util - npm Package Compare versions
Comparing version 1.5.0 to 1.6.0
| { | ||
| "name": "bal-util", | ||
| "version": "1.5.0", | ||
| "version": "1.6.0", | ||
| "description": "Common utility functions for Node.js used and maintained by Benjamin Lupton", | ||
@@ -21,12 +21,12 @@ "homepage": "https://github.com/balupton/bal-util", | ||
| ], | ||
| "author": "Benjamin Lupton <b@lupton.cc> (http://balupton.com)", | ||
| "maintainers": [ | ||
| "Benjamin Lupton <b@lupton.cc> (http://balupton.com)" | ||
| ], | ||
| "contributors": [ | ||
| "Benjamin Lupton <b@lupton.cc> (http://balupton.com)" | ||
| ], | ||
| "bugs": { | ||
| "url": "https://github.com/balupton/bal-util/issues" | ||
| }, | ||
| "author": "Benjamin Lupton <b@lupton.cc> (http://balupton.com)", | ||
| "maintainers": [ | ||
| "Benjamin Lupton <b@lupton.cc> (http://balupton.com)" | ||
| ], | ||
| "contributors": [ | ||
| "Benjamin Lupton <b@lupton.cc> (http://balupton.com)" | ||
| ], | ||
| "bugs": { | ||
| "url": "https://github.com/balupton/bal-util/issues" | ||
| }, | ||
| "repository" : { | ||
@@ -40,6 +40,6 @@ "type": "git", | ||
| "dependencies": { | ||
| "request": "2.9.x", | ||
| "coffee-script": "1.3.x" | ||
| "request": "2.9.x" | ||
| }, | ||
| "devDependencies": { | ||
| "coffee-script": "1.3.x", | ||
| "docco": "0.3.x", | ||
@@ -54,3 +54,3 @@ "mocha": "1.0.x" | ||
| }, | ||
| "main": "./main.js" | ||
| "main": "./lib/balutil" | ||
| } |
Sorry, the diff of this file is not supported yet
New alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
No README
QualityPackage does not have a README. This may indicate a failed publish or a low quality package.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Improved metrics
- Dependency count
- decreased by-50%
1
- Lines of code
- increased by682.7%
1448
Worsened metrics
- Total package byte prevSize
- decreased by-84.41%
51275
- Dev dependency count
- increased by50%
3
- Number of package files
- decreased by-64.29%
10
- Number of medium quality alerts
- increased byInfinity%
1
- Number of lines in readme file
- decreased by-100%
0
- Number of low supply chain risk alerts
- increased by1000%
11
- Number of medium supply chain risk alerts
- increased byInfinity%
3
Dependency changes
- Removedcoffee-script@1.3.x
- Removedcoffee-script@1.3.3(transitive)