Latest Threat Research:SANDWORM_MODE: Shai-Hulud-Style npm Worm Hijacks CI Workflows and Poisons AI Toolchains.Details →
fand - npm Package Compare versions
+5
-5
| #!/usr/bin/env node | ||
| const path = require('path') | ||
| const pkg = require('./package.json') | ||
| const output = require('./lib/output.js') | ||
| const wordp = require('./lib/wordp.js') | ||
| const argv = require('./lib/argv.js') | ||
| const pkg = require(path.resolve(__dirname, './package.json')) | ||
| const output = require(path.resolve(__dirname, './lib/output.js')) | ||
| const wordp = require(path.resolve(__dirname, './lib/wordp.js')) | ||
| const argv = require(path.resolve(__dirname, './lib/argv.js')) | ||
| const fs = require('fs') | ||
| const dic = fs.readFileSync('./dic', 'utf8') | ||
| const dic = fs.readFileSync(path.resolve(__dirname, './dic'), 'utf8') | ||
| const word = argv.get('--word') || argv.get('-w') || argv.param(0) | ||
@@ -11,0 +11,0 @@ |
+1
-1
| { | ||
| "name": "fand", | ||
| "version": "0.0.1", | ||
| "version": "0.0.2", | ||
| "description": "Simple cli app to search easily in persian words.", | ||
@@ -5,0 +5,0 @@ "main": "index.js", |
New alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
75194
0.17%Worsened metrics
- Number of low supply chain risk alerts
6
200%No dependency changes