Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
cormo - npm Package Compare versions
Comparing version 0.5.7 to 0.6.0
@@ -7,4 +7,6 @@ // Generated by CoffeeScript 1.6.2 | ||
| exports.Command = require('./command'); | ||
| exports.types = require('./types'); | ||
| }).call(this); |
| { | ||
| "name": "cormo", | ||
| "description": "ORM framework for Node.js", | ||
| "version": "0.5.7", | ||
| "version": "0.6.0", | ||
| "keywords": [ | ||
@@ -17,2 +17,5 @@ "orm", | ||
| "author": "Sangmin Yoon <sangmin.yoon@croquis.com>", | ||
| "bin": { | ||
| "cormo": "./bin/cormo" | ||
| }, | ||
| "repository": { | ||
@@ -24,2 +27,4 @@ "type": "git", | ||
| "async": "", | ||
| "commander": "", | ||
| "fibers": "", | ||
| "inflect": "", | ||
@@ -26,0 +31,0 @@ "underscore": "" |
New alerts
Wildcard dependency
QualityPackage has a dependency with a floating version range. This can cause issues if the dependency publishes a new major version.
Found 2 instances in 1 package
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 2 instances in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by2.5%
208165
- Number of package files
- increased by12.12%
37
- Lines of code
- increased by2.42%
5153
Worsened metrics
- Dependency count
- increased by66.67%
5
- Number of medium quality alerts
- increased by50%
6
- Number of low supply chain risk alerts
- increased by100%
8
Dependency changes
+ Addedcommander@
+ Addedfibers@
+ Addedcommander@12.1.0(transitive)
+ Addeddetect-libc@1.0.3(transitive)
+ Addedfibers@5.0.3(transitive)