cldr-data - npm Package Compare versions

Comparing version 29.0.1 to 29.0.2

install.js

@@ -25,4 +25,14 @@ /**
 } catch(error) {
-  // Better safe than sorry.
-  isNpm3 = true;
+  // child_process.execSync is not available on Node v0.10
+  // fortunately, we can use ENV variables set by npm do detect its version
+  //   npm_config_user_agent: 'npm/2.15.1 node/v0.10.46 darwin x64'
+  //   npm_config_user_agent: 'npm/3.10.3 node/v6.3.0 darwin x64'
+  // Note that users can override the value of this config option,
+  // therefore it's safer to use this method only as a fall-back option.
+  if (/^npm\/2\./.test(process.env.npm_config_user_agent)) {
+    isNpm3 = false;
+  } else {
+    // Better safe than sorry.
+    isNpm3 = true;
+  }
 }
@@ -29,0 +39,0 @@

package.json

 {
   "name": "cldr-data",
-  "version": "29.0.1",
+  "version": "29.0.2",
   "keywords": [
@@ -5,0 +5,0 @@ "unicode",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

16487

increased by3.19%

Lines of code

278

increased by3.73%

Worsened metrics

Number of low supply chain risk alerts

9

increased by12.5%

No dependency changes