electron-log - npm Package Compare versions

Comparing version 4.3.3 to 4.3.4

package.json

 {
   "name": "electron-log",
-  "version": "4.3.3",
+  "version": "4.3.4",
   "description": "Just a very simple logging module for your Electron application",
@@ -44,3 +44,3 @@ "main": "src/index.js",
     "eslint-plugin-import": "^2.22.1",
-    "humile": "^0.2.20",
+    "humile": "^0.3.2",
     "nw": "0.42.3",
@@ -47,0 +47,0 @@ "typescript": "^4.0.5",

src/electronApi.js

@@ -123,7 +123,14 @@ 'use strict';
 function isDev() {
-  // based on sindresorhus/electron-is-dev
   var app = getApp();
-  if (!app) return false;
 
-  return !app.isPackaged || process.env.ELECTRON_IS_DEV === '1';
+  if (app && app.isPackaged !== undefined) {
+    return app.isPackaged;
+  }
+
+  if (typeof process.execPath === 'string') {
+    return process.execPath.toLowerCase().endsWith('electron');
+  }
+
+  return process.env.NODE_ENV === 'development'
+    || process.env.ELECTRON_IS_DEV === '1';
 }
@@ -130,0 +137,0 @@

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

104443

increased by0.14%

Lines of code

3065

increased by0.16%

Worsened metrics

Number of low supply chain risk alerts

14

increased by7.69%

No dependency changes