create-miro-app
Advanced tools
create-miro-app - npm Package Compare versions
Comparing version 1.10.6 to 1.10.7
| { | ||
| "name": "create-miro-app", | ||
| "version": "1.10.6", | ||
| "version": "1.10.7", | ||
| "keywords": [ | ||
@@ -36,3 +36,2 @@ "miro", | ||
| "prepare": "husky install", | ||
| "release": "np", | ||
| "test": "./test/cli.sh" | ||
@@ -54,7 +53,7 @@ }, | ||
| "@types/tar": "6.1.3", | ||
| "@types/validate-npm-package-name": "3.0.3", | ||
| "@types/validate-npm-package-name": "4.0.0", | ||
| "@vercel/ncc": "0.33.0", | ||
| "analytics-node": "^6.2.0", | ||
| "async-retry": "1.3.3", | ||
| "commander": "8.3.0", | ||
| "commander": "10.0.0", | ||
| "cpy": "^9.0.1", | ||
@@ -64,7 +63,6 @@ "cross-spawn": "7.0.3", | ||
| "husky": "7.0.4", | ||
| "lint-staged": "13.1.0", | ||
| "lint-staged": "13.1.2", | ||
| "lodash.template": "4.5.0", | ||
| "np": "^7.6.3", | ||
| "picocolors": "1.0.0", | ||
| "prettier": "2.8.2", | ||
| "prettier": "2.8.4", | ||
| "prompts": "2.4.2", | ||
@@ -71,0 +69,0 @@ "rimraf": "4.1.2", |
Sorry, the diff of this file is too big to display
New alerts
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 3 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 3 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Improved metrics
- Dev dependency count
- decreased by-3.03%
32
- Number of low supply chain risk alerts
- decreased by-6.56%
57
- Number of medium supply chain risk alerts
- decreased by-22.22%
14
Worsened metrics
- Total package byte prevSize
- decreased by-8.18%
1059672
- Number of package files
- decreased by-2.4%
122
- Lines of code
- decreased by-9.72%
3873