egg-session-mongo - npm Package Compare versions

Comparing version 2.0.0 to 2.0.1

package.json

 {
   "name": "egg-session-mongo",
-  "version": "2.0.0",
-  "description": "mongodb store for egg session. based on `connect-mongo`",
+  "version": "2.0.1",
+  "description": "MongoDB store for egg session. based on `connect-mongo`.",
   "main": "index.js",
@@ -12,20 +12,23 @@ "eggPlugin": {
     "eggPlugin",
-    "egg-plugin"
+    "egg-plugin",
+    "session",
+    "mongo",
+    "MongoDB"
   ],
   "dependencies": {
-    "koa-session-mongo": "git+https://github.com/Mitscherlich/koa-session-mongo.git",
-    "mongodb": "^3.0.3"
+    "koa-session-mongo": "https://github.com/Mitscherlich/koa-session-mongo",
+    "mongodb": "^3.1.6"
   },
   "devDependencies": {
-    "autod": "^3.0.0",
-    "autod-egg": "^1.0.0",
-    "egg": "^2.0.0",
-    "egg-bin": "^4.3.0",
-    "egg-ci": "^1.8.0",
-    "egg-mock": "^3.13.0",
-    "eslint": "^4.11.0",
-    "eslint-config-egg": "^5.1.0",
-    "mongoose": "^5.0.9",
+    "autod": "^3.0.1",
+    "autod-egg": "^1.1.0",
+    "egg": "^2.11.2",
+    "egg-bin": "^4.9.0",
+    "egg-ci": "^1.9.2",
+    "egg-mock": "^3.20.1",
+    "eslint": "^5.6.1",
+    "eslint-config-egg": "^7.1.0",
+    "mongoose": "^5.3.2",
     "mz-modules": "^2.1.0",
-    "supertest": "^3.0.0",
+    "supertest": "^3.3.0",
     "webstorm-disable-index": "^1.2.0"
@@ -52,9 +55,4 @@ },
   },
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/Mitscherlich/egg-session-mongo.git"
-  },
-  "bugs": {
-    "url": "https://github.com/Mitscherlich/egg-session-mongo/issues"
-  },
+  "repository": "https://github.com/Mitscherlich/egg-session-mongo",
+  "bugs": "https://github.com/Mitscherlich/egg-session-mongo/issues",
   "homepage": "https://github.com/Mitscherlich/egg-session-mongo#readme",
@@ -61,0 +59,0 @@ "author": "Mitscherlich",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

HTTP dependency

Supply chain risk

Contains a dependency which resolves to a remote HTTP URL which could be used to inject untrusted code and reduce overall package reliability.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

No bug tracker

Maintenance

Package does not have a linked bug tracker in package.json.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Git dependency

Supply chain risk

Contains a dependency which resolves to a remote git URL. Dependencies fetched from git URLs are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Worsened metrics

Total package byte prevSize

8786

decreased by-0.28%

Number of low maintenance alerts

2

increased by100%

Number of low supply chain risk alerts

1

increased byInfinity%

Dependency changes

• Updatedkoa-session-mongo@https://github.com/Mitscherlich/koa-session-mongo

• Updatedmongodb@^3.1.6