express-naked-redirect - npm Package Compare versions

Comparing version 0.1.6 to 0.1.7

index.js

@@ -8,3 +8,3 @@ /**
 var subdomainParser = (function () {
-  const parseDomain = require('parse-domain/lib/parseDomain')
+  const { parseDomain } = require('parse-domain/build-cjs/src/parse-domain')
   const parsedDomain = {}
@@ -18,3 +18,3 @@
           var ps = parseDomain(hostname)
-          parsedDomain[hostname] = [ps.subdomain, ps.domain + '.' + ps.tld]
+          parsedDomain[hostname] = [ps.subDomains.join('.'), ps.domain + '.' + ps.topLevelDomains.join('.')]
         } catch (e) {
@@ -21,0 +21,0 @@ parsedDomain[hostname] = [null, null]

package.json

 {
   "name": "express-naked-redirect",
-  "version": "0.1.6",
+  "version": "0.1.7",
   "description": "expressNakedRedirect is a middleware for Express that redirects naked(root domain) request to www or its reverse.",
@@ -31,3 +31,3 @@ "contributors": [
   "dependencies": {
-    "parse-domain": "github:why2pac/parse-domain"
+    "parse-domain": "^3.0.0-beta.2"
   },
@@ -34,0 +34,0 @@ "devDependencies": {

Fixed alerts

GitHub dependency

Supply chain risk

Contains a dependency which resolves to a GitHub URL. Dependencies fetched from GitHub specifiers are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

8482

increased by0.4%

Number of high supply chain risk alerts

0

decreased by-100%

Dependency changes

• + Addedip-regex@4.3.0(transitive)

• + Addedis-ip@3.1.0(transitive)

• + Addednode-fetch@2.7.0(transitive)

• + Addedparse-domain@3.0.4(transitive)

• + Addedpunycode@2.3.1(transitive)

• + Addedtr46@0.0.3(transitive)

• + Addedwebidl-conversions@3.0.1(transitive)

• + Addedwhatwg-url@5.0.0(transitive)

• Updatedparse-domain@^3.0.0-beta.2