cli-form - npm Package Compare versions

Comparing version 0.1.4 to 2.0.0

package.json

 {
   "name": "cli-form",
-  "version": "0.1.4",
-  "description": "Build user-friendly command-line forms",
+  "version": "2.0.0",
+  "description": "",
   "main": "index.js",
   "scripts": {
-    "test": "node test"
+    "test": "echo \"Error: no test specified\" && exit 1"
   },
-  "keywords": [
-    "cli",
-    "command-line",
-    "form"
-  ],
-  "repository": {
-    "url": "git@github.com:azer/cli-form.git",
-    "type": "git"
-  },
-  "author": "azer",
-  "license": "BSD",
-  "dependencies": {
-    "cli-qa": "*",
-    "config-doc": "^0.1.0",
-    "format-text": "0.0.3",
-    "new-struct": "^0.1.1"
-  }
+  "author": "",
+  "license": "ISC"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

No contributors or author data

Maintenance

Package does not specify a list of contributors or an author in package.json.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No tests

Quality

Package does not have any tests. This is a strong signal of a poorly maintained or low quality package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Wildcard dependency

Quality

Package has a dependency with a floating version range. This can cause issues if the dependency publishes a new major version.

Found 1 instance in 1 package

Misc. License Issues

License

(Experimental) A package's licensing information has fine-grained problems.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Dependency count

0

decreased by-100%

Number of medium license alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

3636

decreased by-21.06%

Number of package files

3

decreased by-57.14%

Lines of code

0

decreased by-100%

Number of low maintenance alerts

3

increased by50%

Number of lines in readme file

0

decreased by-100%

Number of medium supply chain risk alerts

2

increased byInfinity%

Dependency changes

• - Removedcli-qa@*

• - Removedconfig-doc@^0.1.0

• - Removedformat-text@0.0.3

• - Removednew-struct@^0.1.1

• - Removedanglicize@0.0.5(transitive)

• - Removedansi-codes@2.0.0(transitive)

• - Removedcli-qa@2.3.0(transitive)

• - Removedcomma-list@0.0.1(transitive)

• - Removedconfig-doc@0.1.0(transitive)

• - Removeddebounce-fn@0.1.0(transitive)

• - Removeddebug@4.4.0(transitive)

• - Removedexpand-home-dir@0.0.2(transitive)

• - Removedformat-text@0.0.3(transitive)

• - Removedkeypress@0.2.1(transitive)

• - Removedlocal-debug@0.0.0(transitive)

• - Removedmethodify@0.0.2(transitive)

• - Removedminimist@1.2.8(transitive)

• - Removedmix-objects@0.0.20.0.3(transitive)

• - Removedmkdirp@0.5.6(transitive)

• - Removedms@2.1.3(transitive)

• - Removednew-error@0.0.0(transitive)

• - Removednew-format@2.0.0(transitive)

• - Removednew-struct@0.1.1(transitive)

• - Removedon-key-press@0.0.0(transitive)

• - Removedread-cli-input@1.0.1(transitive)

• - Removedread-json@1.0.3(transitive)

• - Removedserial-loop@0.0.1(transitive)

• - Removedstyle-format@0.0.0(transitive)

• - Removedtry-call@0.0.00.0.2(transitive)

• - Removedvalidate-value@0.0.0(transitive)

• - Removedvariable-name@0.0.2(transitive)

• - Removedwrite@0.2.1(transitive)

• - Removedwrite-json@0.2.2(transitive)