commitplease - npm Package Compare versions

Comparing version 2.7.3-2 to 2.7.3-3

lib/sanitize.js

@@ -1,27 +0,5 @@
-var process = require('child_process')
-var command = 'git config --get core.commentchar'
-
 var scissor = /# ------------------------ >8 ------------------------[\s\S]+/
 
-var comment = null
-
-function initComment () {
-  try {
-    comment = process.execSync(command).toString().trim()
-  } catch (error) {
-    comment = '#'
-
-    // console.log('Suppressing an error from ' + command)
-    // console.log('Possible reasons for error:')
-    // console.log(' 1. "core.commentchar" defaults to #')
-    // console.log(' 2. This is *not* a git repository')
-    // console.log(' 3. This is a git submodule')
-    // console.log('Maybe something else, no reliable way to know')
-  }
-}
-
 module.exports = function (value) {
-  if (comment === null) initComment()
-
-  var isComment = new RegExp('^' + comment)
+  var isComment = new RegExp('^#')
   return value.replace(scissor, '').split(/\n/).filter(function (line) {
@@ -28,0 +6,0 @@ return !isComment.test(line)

package.json

 {
   "name": "commitplease",
-  "version": "2.7.3-2",
+  "version": "2.7.3-3",
   "description": "Validates strings as commit messages",
@@ -5,0 +5,0 @@ "main": "index.js",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Improved metrics

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

44463

decreased by-1.42%

Lines of code

1165

decreased by-1.44%

No dependency changes