New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
gencord - npm Package Compare versions
Comparing version 0.0.0 to 0.0.4
| { | ||
| "name": "gencord", | ||
| "version": "0.0.0", | ||
| "version": "0.0.4", | ||
| "description": "A simple, beginner friendly, and easy to use library for interacting with the Discord API, with minimal syntax", | ||
| "main": "dist/index.js", | ||
| "main": "dist/src/index.js", | ||
| "typings": "dist/typings/typings.d.ts", | ||
@@ -7,0 +7,0 @@ "scripts": { |
New alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by2683.21%
134958
- Number of package files
- increased by600%
21
- Lines of code
- increased byInfinity%
599
Worsened metrics
- Number of low supply chain risk alerts
- increased byInfinity%
2
No dependency changes