detective - npm Package Compare versions

Comparing version 4.7.1 to 5.0.0

index.js

@@ -1,2 +0,2 @@
-var acorn = require('acorn');
+var acorn = require('acorn5-object-spread/inject')(require('acorn'));
 var walk = require('acorn/dist/walk');
@@ -21,3 +21,4 @@ var defined = require('defined');
         ),
-        allowHashBang: defined(opts.allowHashBang, true)
+        allowHashBang: defined(opts.allowHashBang, true),
+        plugins: { objectSpread: true }
     });
@@ -24,0 +25,0 @@ }

package.json

 {
   "name": "detective",
   "description": "find all require() calls by walking the AST",
-  "version": "4.7.1",
+  "version": "5.0.0",
   "repository": {
@@ -21,2 +21,3 @@ "type": "git",
     "acorn": "^5.2.1",
+    "acorn5-object-spread": "^5.0.0",
     "defined": "^1.0.0"
@@ -23,0 +24,0 @@ },

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

18755

increased by5.26%

Number of package files

40

increased by8.11%

Lines of code

445

increased by3.49%

Worsened metrics

Dependency count

3

increased by50%

Number of low supply chain risk alerts

20

increased by5.26%

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Addedacorn5-object-spread@^5.0.0

• + Addedacorn5-object-spread@5.1.2(transitive)