detective - npm Package Compare versions

Comparing version 4.0.3 to 4.1.0

index.js

 var aparse = require('acorn').parse;
+var escodegen = require('escodegen');
 var defined = require('defined');
@@ -12,29 +13,27 @@
         locations: defined(opts.locations, opts.loc),
+        allowReserved: defined(opts.allowReserved, true),
         allowReturnOutsideFunction: defined(
             opts.allowReturnOutsideFunction, true
         ),
-        strictSemicolons: defined(opts.strictSemicolons, false),
-        allowTrailingCommas: defined(opts.allowTrailingCommas, true),
-        forbidReserved: defined(opts.forbidReserved, false)
+        allowHashBang: defined(opts.allowHashBang, true)
     });
 }
-var escodegen = require('escodegen');
 
 var traverse = function (node, cb) {
     if (Array.isArray(node)) {
-        node.forEach(function (x) {
-            if(x != null) {
-                x.parent = node;
-                traverse(x, cb);
+        for (var i = 0; i < node.length; i++) {
+            if (node[i] != null) {
+                node[i].parent = node;
+                traverse(node[i], cb);
             }
-        });
+        }
     }
     else if (node && typeof node === 'object') {
         cb(node);
-
-        Object.keys(node).forEach(function (key) {
-            if (key === 'parent' || !node[key]) return;
+        for (var key in node) {
+            if (!node.hasOwnProperty(key)) continue;
+            if (key === 'parent' || !node[key]) continue;
             node[key].parent = node;
             traverse(node[key], cb);
-        });
+        }
     }
@@ -54,8 +53,5 @@ };
     if (!opts) opts = {};
-    opts.parse = opts.parse || {};
-    opts.parse.tolerant = true;
     
     var word = opts.word === undefined ? 'require' : opts.word;
     if (typeof src !== 'string') src = String(src);
-    src = src.replace(/^#![^\n]*\n/, '');
     
@@ -62,0 +58,0 @@ var isRequire = opts.isRequire || function (node) {

package.json

 {
   "name": "detective",
   "description": "find all require() calls by walking the AST",
-  "version": "4.0.3",
+  "version": "4.1.0",
   "repository": {
@@ -6,0 +6,0 @@ "type": "git",

Fixed alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

16948

decreased by-0.74%

Lines of code

404

decreased by-0.74%

No dependency changes