fabric8-analytics-lsp-server - npm Package Compare versions

Comparing version 0.4.8 to 0.4.9

collector.js

@@ -149,4 +149,5 @@ /* --------------------------------------------------------------------------------------------
             const vscodeRootpath = this.manifestFile.replace("file://", "").replace("/go.mod", "");
-            child_process_1.exec(utils_1.getGoLangImportsCmd(), { cwd: vscodeRootpath, maxBuffer: 1024 * 1200 }, (error, stdout, stderr) => {
+            child_process_1.exec(utils_1.getGoLangImportsCmd(), { shell: process.env["SHELL"], windowsHide: true, cwd: vscodeRootpath, maxBuffer: 1024 * 1200 }, (error, stdout, stderr) => {
                 if (error) {
+                    console.error(`Command failed, environment SHELL: [${process.env["SHELL"]}] PATH: [${process.env["PATH"]}] CWD: [${process.env["CWD"]}]`);
                     if (error.code == 127) { // Invalid command, go executable not found
@@ -153,0 +154,0 @@ reject(`Unable to locate '${config_1.config.golang_executable}'`);

package.json

 {
   "name": "fabric8-analytics-lsp-server",
   "description": "LSP Server for Dependency Analytics",
-  "version": "0.4.8",
+  "version": "0.4.9",
   "author": "Pavel Odvody",
@@ -6,0 +6,0 @@ "contributors": [

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

91828

increased by0.46%

Lines of code

969

increased by0.1%

Worsened metrics

Number of low supply chain risk alerts

5

increased by400%

No dependency changes