caccl-authorizer - npm Package Compare versions

Comparing version 1.1.27 to 2.0.0-beta.0

package.json

 {
   "name": "caccl-authorizer",
-  "version": "1.1.27",
+  "version": "2.0.0-beta.0",
   "description": "Acquires Canvas tokens through via OAuth, stores refresh tokens, and refreshes access tokens when they expire.",
-  "main": "index.js",
+  "main": "./lib/index.js",
+  "types": "./lib/index.d.ts",
   "scripts": {
-    "test": "node test",
-    "accept": "node test/accept"
+    "build": "tsc --project ./tsconfig.json"
   },
@@ -24,3 +24,3 @@ "repository": {
   ],
-  "author": "Gabriel Abrams <gabeabrams@gmail.com>",
+  "author": "Gabe Abrams <gabeabrams@gmail.com>",
   "license": "MIT",
@@ -32,8 +32,6 @@ "bugs": {
   "devDependencies": {
-    "body-parser": "^1.19.0",
-    "caccl": "^1.1.41",
-    "caccl-canvas-partial-simulator": "^1.0.43",
-    "dce-selenium": "^1.0.58",
-    "eslint": "^5.16.0",
-    "eslint-config-airbnb": "^17.1.1",
+    "@types/express": "^4.17.13",
+    "caccl": "^1.0.1",
+    "eslint": "^8.9.0",
+    "eslint-config-airbnb": "^19.0.4",
     "eslint-plugin-cypress": "^2.11.2",
@@ -43,18 +41,10 @@ "eslint-plugin-import": "^2.22.1",
     "eslint-plugin-react": "^7.22.0",
-    "express": "^4.17.1",
-    "express-session": "^1.17.1",
-    "fs": "0.0.1-security",
-    "https": "^1.0.0",
-    "ims-lti": "^3.0.2",
-    "mocha": "^8.2.1"
+    "typescript": "^4.5.5"
   },
   "dependencies": {
-    "caccl-api": "^1.0.77",
-    "caccl-error": "^1.0.7",
-    "caccl-lti": "^1.1.8",
-    "caccl-send-request": "^1.0.15",
-    "ejs": "^2.7.4",
-    "qs": "^6.9.6",
-    "randomstring": "^1.1.5"
+    "caccl-error": "^2.0.0-beta.0",
+    "caccl-lti": "^2.0.0-beta.7",
+    "caccl-send-request": "^2.0.0-beta.0",
+    "express": "^4.17.3"
   }
 }

New alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Fixed alerts

AI detected potential malware

Supply chain risk

AI has identified this package as malware. This is a strong signal that the package may be malicious.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Dependency count

4

decreased by-42.86%

Dev dependency count

9

decreased by-43.75%

Number of high supply chain risk alerts

0

decreased by-100%

Number of low supply chain risk alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

75058

decreased by-20.53%

Number of package files

36

decreased by-20%

Lines of code

1194

decreased by-45.15%

Number of low quality alerts

1

increased byInfinity%

Dependency changes

• + Addedexpress@^4.17.3

• + Addedaccepts@1.3.8(transitive)

• + Addedarray-flatten@1.1.1(transitive)

• + Addedbody-parser@1.20.2(transitive)

• + Addedbytes@3.1.2(transitive)

• + Addedcaccl-api@2.2.12(transitive)

• + Addedcaccl-error@2.2.12(transitive)

• + Addedcaccl-lti@2.2.12(transitive)

• + Addedcaccl-memory-store@2.2.12(transitive)

• + Addedcaccl-send-request@2.2.12(transitive)

• + Addedcontent-disposition@0.5.4(transitive)

• + Addedcontent-type@1.0.5(transitive)

• + Addedcookie@0.6.0(transitive)

• + Addedcookie-signature@1.0.61.0.7(transitive)

• + Addeddebug@2.6.9(transitive)

• + Addeddepd@2.0.0(transitive)

• + Addeddestroy@1.2.0(transitive)

• + Addedee-first@1.1.1(transitive)

• + Addedencodeurl@1.0.2(transitive)

• + Addedescape-html@1.0.3(transitive)

• + Addedetag@1.8.1(transitive)

• + Addedexpress@4.19.2(transitive)

• + Addedexpress-session@1.18.0(transitive)

• + Addedfinalhandler@1.2.0(transitive)

• + Addedforwarded@0.2.0(transitive)

• + Addedfresh@0.5.2(transitive)

• + Addedhttp-errors@2.0.0(transitive)

• + Addediconv-lite@0.4.24(transitive)

• + Addedipaddr.js@1.9.1(transitive)

• + Addedmedia-typer@0.3.0(transitive)

• + Addedmerge-descriptors@1.0.1(transitive)

• + Addedmethods@1.1.2(transitive)

• + Addedmime@1.6.0(transitive)

• + Addedms@2.0.02.1.3(transitive)

• + Addednegotiator@0.6.3(transitive)

• + Addedon-finished@2.4.1(transitive)

• + Addedon-headers@1.0.2(transitive)

• + Addedparseurl@1.3.3(transitive)

• + Addedpath-to-regexp@0.1.7(transitive)

• + Addedproxy-addr@2.0.7(transitive)

• + Addedqs@6.11.0(transitive)

• + Addedrandom-bytes@1.0.0(transitive)

• + Addedrange-parser@1.2.1(transitive)

• + Addedraw-body@2.5.2(transitive)

• + Addedsafer-buffer@2.1.2(transitive)

• + Addedsend@0.18.0(transitive)

• + Addedserve-static@1.15.0(transitive)

• + Addedsetprototypeof@1.2.0(transitive)

• + Addedstatuses@2.0.1(transitive)

• + Addedtoidentifier@1.0.1(transitive)

• + Addedtype-is@1.6.18(transitive)

• + Addeduid-safe@2.1.5(transitive)

• + Addedunpipe@1.0.0(transitive)

• + Addedutils-merge@1.0.1(transitive)

• + Addedvary@1.1.2(transitive)

• - Removedcaccl-api@^1.0.77

• - Removedejs@^2.7.4

• - Removedqs@^6.9.6

• - Removedrandomstring@^1.1.5

• - Removedasync@2.6.4(transitive)

• - Removedasynckit@0.4.0(transitive)

• - Removedaxios@0.21.4(transitive)

• - Removedbuffer-from@1.1.2(transitive)

• - Removedcaccl-api@1.0.79(transitive)

• - Removedcaccl-error@1.0.7(transitive)

• - Removedcaccl-lti@1.1.9(transitive)

• - Removedcaccl-send-request@1.0.15(transitive)

• - Removedcombined-stream@1.0.8(transitive)

• - Removedconcat-stream@2.0.0(transitive)

• - Removedcron-parser@2.18.0(transitive)

• - Removedcsv-parse@4.16.3(transitive)

• - Removeddefine-properties@1.2.1(transitive)

• - Removeddelayed-stream@1.0.0(transitive)

• - Removedejs@2.7.4(transitive)

• - Removedfollow-redirects@1.15.6(transitive)

• - Removedform-data@4.0.0(transitive)

• - Removedhttps@1.0.0(transitive)

• - Removedinherits@2.0.3(transitive)

• - Removedis-nan@1.3.2(transitive)

• - Removedis-number@7.0.0(transitive)

• - Removedjs-tokens@4.0.0(transitive)

• - Removedlodash@4.17.21(transitive)

• - Removedlong-timeout@0.1.1(transitive)

• - Removedloose-envify@1.4.0(transitive)

• - Removedmoment@2.30.1(transitive)

• - Removedmoment-timezone@0.5.45(transitive)

• - Removednode-schedule@1.3.3(transitive)

• - Removedobject-assign@4.1.1(transitive)

• - Removedobject-keys@1.1.1(transitive)

• - Removedparse-link-header@1.0.1(transitive)

• - Removedpath@0.12.7(transitive)

• - Removedprocess@0.11.10(transitive)

• - Removedprop-types@15.8.1(transitive)

• - Removedpunycode@1.4.1(transitive)

• - Removedrandombytes@2.0.3(transitive)

• - Removedrandomstring@1.3.0(transitive)

• - Removedreact-is@16.13.1(transitive)

• - Removedreadable-stream@3.6.2(transitive)

• - Removedsorted-array-functions@1.3.0(transitive)

• - Removedstring_decoder@1.3.0(transitive)

• - Removedtypedarray@0.0.6(transitive)

• - Removedurl@0.11.4(transitive)

• - Removedutil@0.10.4(transitive)

• - Removedutil-deprecate@1.0.2(transitive)

• - Removedxtend@4.0.2(transitive)

• Updatedcaccl-error@^2.0.0-beta.0

• Updatedcaccl-lti@^2.0.0-beta.7

• Updatedcaccl-send-request@^2.0.0-beta.0