New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
cli-engine-heroku
Advanced tools
cli-engine-heroku - npm Package Compare versions
Comparing version 7.0.1 to 7.0.2
| { | ||
| "name": "cli-engine-heroku", | ||
| "description": "heroku specific functionality for the cli-engine", | ||
| "version": "7.0.1", | ||
| "version": "7.0.2", | ||
| "author": "Jeff Dickey @jdxcode", | ||
| "bugs": "https://github.com/heroku/cli-engine-heroku/issues", | ||
| "dependencies": { | ||
| "cli-ux": "^2.0.9", | ||
| "cli-ux": "^2.0.10", | ||
| "heroku-client": "3.0.4", | ||
@@ -17,5 +17,5 @@ "http-call": "^4.0.5", | ||
| "@types/node": "8.5.1", | ||
| "cli-engine-command": "11.0.2", | ||
| "cli-engine-config": "5.0.2", | ||
| "cli-flags": "2.0.1", | ||
| "cli-engine-command": "11.0.3", | ||
| "cli-engine-config": "5.0.3", | ||
| "cli-flags": "^2.0.2", | ||
| "del-cli": "1.1.0", | ||
@@ -54,3 +54,3 @@ "husky": "0.14.3", | ||
| "pretest": "tsc", | ||
| "prune": "del-cli \"lib/**/*\\.test\\.(d.ts|js)\"", | ||
| "prune": "del-cli 'lib/**/*.test.+(d.ts|js)'", | ||
| "test": "jest" | ||
@@ -57,0 +57,0 @@ }, |
Fixed alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-62.07%
11
- Number of medium supply chain risk alerts
- decreased by-21.43%
11
Worsened metrics
- Total package byte prevSize
- decreased by-44.8%
28713
- Number of package files
- decreased by-40.74%
32
- Lines of code
- decreased by-44.26%
830
Dependency changes
Updatedcli-ux@^2.0.10