New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
fpi - npm Package Compare versions
Comparing version 0.0.15 to 0.0.16
28
index.js
@@ -11,7 +11,8 @@ #! /usr/bin/env node | ||
| const color = { | ||
| error: '\x1b[33m%s\x1b[0m' | ||
| error: '\x1b[33m%s\x1b[0m', | ||
| info: '\x1b[36m%s\x1b[0m' | ||
| } | ||
| /* If CLI parameter equals 'install' or 'i' */ | ||
| if (cliParameter === 'install' || cliParameter === 'i') { | ||
| /* If CLI parameter equals 'i' or 'install' */ | ||
| if (cliParameter === 'i' || cliParameter === 'install') { | ||
| /* Get 'package.json' file path */ | ||
@@ -41,2 +42,21 @@ const packageJsonPath = path.join(process.cwd(), 'package.json') | ||
| }/* if (fs.existsSync(packageJsonPath)) */ | ||
| }/* if (cliParameter === 'install' || cliParameter === 'i') */ | ||
| /* If CLI parameter equals '-h' or '--help' */ | ||
| } else if (cliParameter === '-h' || cliParameter === '--help') { | ||
| /* Declare available commands list */ | ||
| let commands = 'Available commands:\n' | ||
| commands += ' i, install \t\tInstall dependencies.\n' | ||
| commands += ' -h, --help \t\tShow this screen.\n' | ||
| commands += ' -v, --version \t\tShow version of this package.' | ||
| /* Show available commands list */ | ||
| console.log(color.info, commands) | ||
| /* If CLI parameter equals '-v' or '--version' */ | ||
| } else if (cliParameter === '-v' || cliParameter === '--version') { | ||
| /* Get this package's 'package.json' file content */ | ||
| const fipPackageJsonContent = require(path.join(__dirname, 'package.json')) | ||
| /* Show version of this package */ | ||
| console.log('v' + fipPackageJsonContent.version) | ||
| /* If there is no CLI parameter */ | ||
| } else { | ||
| /* Show error */ | ||
| console.log(color.info, 'For help enter: \'fpi -h\'') | ||
| }/* if (cliParameter === 'i' || cliParameter === 'install') */ |
| { | ||
| "name": "fpi", | ||
| "version": "0.0.15", | ||
| "version": "0.0.16", | ||
| "description": "Fast Package Installer.", | ||
@@ -26,9 +26,3 @@ "main": "index.js", | ||
| "fpi": "index.js" | ||
| }, | ||
| "dependencies": { | ||
| "react": "^16.1.0" | ||
| }, | ||
| "devDependencies": { | ||
| "react-dom": "^16.2.0" | ||
| } | ||
| } |
New alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by21%
4742
- Dependency count
- decreased by-100%
0
- Dev dependency count
- decreased by-100%
0
- Lines of code
- increased by57.14%
55
Worsened metrics
- Number of low supply chain risk alerts
- increased by50%
3
Dependency changes
- Removedreact@^16.1.0
- Removedjs-tokens@4.0.0(transitive)
- Removedloose-envify@1.4.0(transitive)
- Removedobject-assign@4.1.1(transitive)
- Removedprop-types@15.8.1(transitive)
- Removedreact@16.14.0(transitive)
- Removedreact-is@16.13.1(transitive)