google-auth-library
Advanced tools
google-auth-library - npm Package Compare versions
@@ -7,2 +7,3 @@ export declare enum GCPEnv { | ||
| CLOUD_RUN = "CLOUD_RUN", | ||
| CLOUD_RUN_JOBS = "CLOUD_RUN_JOBS", | ||
| NONE = "NONE" | ||
@@ -9,0 +10,0 @@ } |
@@ -27,2 +27,3 @@ "use strict"; | ||
| GCPEnv["CLOUD_RUN"] = "CLOUD_RUN"; | ||
| GCPEnv["CLOUD_RUN_JOBS"] = "CLOUD_RUN_JOBS"; | ||
| GCPEnv["NONE"] = "NONE"; | ||
@@ -56,2 +57,5 @@ })(GCPEnv || (exports.GCPEnv = GCPEnv = {})); | ||
| } | ||
| else if (isCloudRunJob()) { | ||
| env = GCPEnv.CLOUD_RUN_JOBS; | ||
| } | ||
| else { | ||
@@ -80,2 +84,5 @@ env = GCPEnv.COMPUTE_ENGINE; | ||
| } | ||
| function isCloudRunJob() { | ||
| return !!process.env.CLOUD_RUN_JOB; | ||
| } | ||
| async function isKubernetesEngine() { | ||
@@ -82,0 +89,0 @@ try { |
+2
-2
| { | ||
| "name": "google-auth-library", | ||
| "version": "10.2.1", | ||
| "version": "10.3.0", | ||
| "author": "Google Inc.", | ||
@@ -56,3 +56,3 @@ "description": "Google APIs Authentication Client Library for Node.js", | ||
| "ncp": "^2.0.0", | ||
| "nock": "14.0.5", | ||
| "nock": "^14.0.5", | ||
| "null-loader": "^4.0.0", | ||
@@ -59,0 +59,0 @@ "puppeteer": "^24.0.0", |
New alerts
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 22 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
AI-detected potential code anomaly
Supply chain riskAI has identified unusual behaviors that may pose a security risk.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 21 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
542932
0.05%- Lines of code
10770
0.07%Worsened metrics
- Number of low supply chain risk alerts
56
3.7%