New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
boxrec-mocks
Advanced tools
boxrec-mocks - npm Package Compare versions
Comparing version 0.9.1 to 0.9.2
| { | ||
| "name": "boxrec-mocks", | ||
| "version": "0.9.1", | ||
| "version": "0.9.2", | ||
| "description": "a repo for BoxRec mocks that can be used for testing/development", | ||
| "main": "index.js", | ||
| "main": "./dist/index.js", | ||
| "scripts": { | ||
@@ -27,2 +27,3 @@ "prepublish": "npm run build", | ||
| "boxrec-requests": "^2.0.1", | ||
| "cheerio": "^1.0.0-rc.2", | ||
| "shelljs": "^0.8.3" | ||
@@ -29,0 +30,0 @@ }, |
New alerts
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Fixed alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by9049.12%
2537508
- Number of package files
- increased by500%
30
- Number of low supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Dev dependency count
- increased by50%
3
- Lines of code
- decreased by-100%
0
- Number of medium supply chain risk alerts
- increased byInfinity%
1
No dependency changes