New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
home - npm Package Compare versions
Comparing version 0.1.8 to 1.0.1
@@ -5,8 +5,3 @@ 'use strict'; | ||
| var USER_HOME = process.platform == 'win32' | ||
| ? process.env.HOMEPATH || process.env.USERPROFILE | ||
| : process.env.HOME; | ||
| var node_path = require('path'); | ||
| var USER_HOME = require('os-homedir')(); | ||
| function home () { | ||
@@ -16,2 +11,3 @@ return USER_HOME; | ||
| var node_path = require('path'); | ||
@@ -18,0 +14,0 @@ var resolve = node_path.resolve; |
| { | ||
| "name": "home", | ||
| "version": "0.1.8", | ||
| "version": "1.0.1", | ||
| "description": "Gets the home dir or resolves home directories.", | ||
@@ -33,3 +33,6 @@ "main": "index.js", | ||
| "chai": "*" | ||
| }, | ||
| "dependencies": { | ||
| "os-homedir": "^1.0.1" | ||
| } | ||
| } |
Fixed alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by482.8%
55226
- Number of package files
- increased by142.86%
17
- Lines of code
- increased by183.17%
589
- Number of low quality alerts
- decreased by-50%
1
- Number of low supply chain risk alerts
- decreased by-60%
2
Worsened metrics
- Dependency count
- increased byInfinity%
1
Dependency changes
+ Addedos-homedir@^1.0.1
+ Addedos-homedir@1.0.2(transitive)