danger - npm Package Compare versions

Comparing version 0.0.1 to 0.0.2

package.json

 {
   "name": "danger",
-  "version": "0.0.1",
+  "version": "0.0.2",
   "description": "Automate your culture",
-  "main": "index.js",
+  "main": "distribution/danger.js",
+  "bin": {
+    "danger": "distribution/commands/danger.js"
+  },
+  "jest": {
+    "verbose": true,
+    "testPathIgnorePatterns": [
+      "/node_modules/",
+      "/distribution/"
+    ]
+  },
   "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1"
+    "test": "jest",
+    "testwatch": "jest --watch",
+    "flow": "flow; test $? -eq 0 -o $? -eq 2",
+    "lint": "eslint ./source",
+    "fix": "eslint ./source --fix",
+    "build": "babel source --out-dir distribution --source-maps",
+    "buildwatch": "babel source --watch --out-dir distribution",
+    "link": "npm run build ; chmod +x distribution/commands/danger.js ; npm link"
   },
@@ -14,3 +31,4 @@ "repository": {
   "keywords": [
-    "danger"
+    "danger",
+    "ci"
   ],
@@ -22,3 +40,27 @@ "author": "Orta Therox",
   },
-  "homepage": "https://github.com/danger/danger-js#readme"
+  "homepage": "https://github.com/danger/danger-js#readme",
+  "devDependencies": {
+    "@types/commander": "^2.3.30",
+    "@types/node-fetch": "^0.0.4",
+    "babel-cli": "^6.16.0",
+    "babel-eslint": "^7.0.0",
+    "babel-plugin-transform-flow-strip-types": "^6.8.0",
+    "babel-polyfill": "^6.16.0",
+    "babel-preset-es2015": "^6.16.0",
+    "babel-plugin-syntax-async-functions": "^6.13.0",
+    "babel-plugin-transform-regenerator": "^6.16.1",
+    "babel-preset-stage-3": "^6.17.0",
+    "eslint": "^3.3.1",
+    "eslint-config-standard": "^6.0.0-beta.3",
+    "eslint-plugin-flowtype": "^2.20.0",
+    "eslint-plugin-promise": "^2.0.1",
+    "eslint-plugin-standard": "^2.0.0",
+    "flow-bin": "^0.32.0",
+    "jest-cli": "^16.0.0"
+  },
+  "dependencies": {
+    "commander": "^2.9.0",
+    "node-fetch": "^1.6.3",
+    "parse-diff": "^0.4.0"
+  }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

No tests

Quality

Package does not have any tests. This is a strong signal of a poorly maintained or low quality package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

330894

increased by66078.8%

Number of package files

78

increased by7700%

Lines of code

4261

increased byInfinity%

Number of low quality alerts

1

decreased by-50%

Number of medium quality alerts

0

decreased by-100%

Number of lines in readme file

52

increased byInfinity%

Worsened metrics

Dependency count

3

increased byInfinity%

Dev dependency count

17

increased byInfinity%

Number of low supply chain risk alerts

4

increased byInfinity%

Dependency changes

• + Addedcommander@^2.9.0

• + Addednode-fetch@^1.6.3

• + Addedparse-diff@^0.4.0

• + Addedcommander@2.20.3(transitive)

• + Addedencoding@0.1.13(transitive)

• + Addediconv-lite@0.6.3(transitive)

• + Addedis-stream@1.1.0(transitive)

• + Addednode-fetch@1.7.3(transitive)

• + Addedparse-diff@0.4.2(transitive)

• + Addedsafer-buffer@2.1.2(transitive)