coins-validate
Advanced tools
Comparing version 2.0.6 to 2.1.0
{ | ||
"name": "coins-validate", | ||
"version": "2.0.6", | ||
"version": "2.1.0", | ||
"description": "configures a package to fall inline with coins standards", | ||
"main": "index.js", | ||
"main": "src/index.js", | ||
"repository": { | ||
@@ -20,10 +20,18 @@ "type": "git", | ||
"jsdoc": "^3.4.0", | ||
"minami": "^1.1.1" | ||
"minami": "^1.1.1", | ||
"tape": "^4.5.1" | ||
}, | ||
"scripts": { | ||
"install": "node index.js", | ||
"install": "node src/index.js", | ||
"preversion": "git checkout master && git pull && npm ls", | ||
"publish-patch": "npm run preversion && npm version patch && git push origin master --tags && npm publish", | ||
"publish-minor": "npm run preversion && npm version minor && git push origin master --tags && npm publish", | ||
"publish-major": "npm run preversion && npm version major && git push origin master --tags && npm publish" | ||
"publish-major": "npm run preversion && npm version major && git push origin master --tags && npm publish", | ||
"test": "node test/", | ||
"lint": "eslint src/ test/", | ||
"lintfix": "eslint --fix src/ test/", | ||
"validate": "npm ls", | ||
"docs": "mkdir -p docs && jsdoc -t ./node_modules/minami -d docs -R README.md -r src/", | ||
"deploy-docs": "gh-pages -d docs && rm -rf docs", | ||
"postpublish": "npm run docs && npm run deploy-docs" | ||
}, | ||
@@ -30,0 +38,0 @@ "author": "cdaringe", |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 1 instance in 1 package
9973
17
202
8
3
5