detective - npm Package Compare versions

Comparing version 0.0.3 to 0.0.4

index.js

 var burrito = require('burrito');
 
-var exports = module.exports = function (src) {
-    return exports.find(src).strings;
+var exports = module.exports = function (src, opts) {
+    return exports.find(src, opts).strings;
 };
 
-exports.find = function (src) {
+exports.find = function (src, opts) {
+    if (!opts) opts = {};
+    var word = opts.word === undefined ? 'require' : opts.word;
+    
     var modules = { strings : [], expressions : [] };
     
-    if (src.toString().indexOf('require') == -1) return modules;
+    if (src.toString().indexOf(word) == -1) return modules;
     
@@ -15,3 +18,3 @@ burrito(src, function (node) {
             && node.value[0][0] === 'name'
-            && node.value[0][1] === 'require'
+            && node.value[0][1] === word
         ;
@@ -32,3 +35,3 @@ if (isRequire) {
             && node.value[0][1][0] === 'name'
-            && node.value[0][1][1] === 'require'
+            && node.value[0][1][1] === word
         ;
@@ -50,3 +53,3 @@
             && node.value[0][1][1][0] === 'name'
-            && node.value[0][1][1][1] === 'require'
+            && node.value[0][1][1][1] === word
         ;
@@ -53,0 +56,0 @@ if (isDotCallRequire) {

package.json

 {
     "name" : "detective",
     "description" : "Find all calls to require() no matter how crazily nested using a proper walk of the AST",
-    "version" : "0.0.3",
+    "version" : "0.0.4",
     "repository" : {
@@ -6,0 +6,0 @@ "type" : "git",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Non-existent author

Supply chain risk

The package was published by an npm account that no longer exists.

Found 1 instance in 1 package

Improved metrics

Number of lines in readme file

65

increased by8.33%

Number of high supply chain risk alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

6334

decreased by-56.2%

Number of package files

13

decreased by-45.83%

Lines of code

139

decreased by-57.62%

Number of medium supply chain risk alerts

2

increased byInfinity%

No dependency changes