http2-proxy - npm Package Compare versions

Comparing version 5.0.46 to 5.0.47

compat.js

 const http = require('http')
 const https = require('https')
 
+const tlsOptions = [
+  'ca',
+  'cert',
+  'ciphers',
+  'clientCertEngine',
+  'crl',
+  'dhparam',
+  'ecdhCurve',
+  'honorCipherOrder',
+  'key',
+  'passphrase',
+  'pfx',
+  'rejectUnauthorized',
+  'secureOptions',
+  'secureProtocol',
+  'servername',
+  'sessionIdContext',
+  'highWaterMark',
+  'checkServerIdentity',
+];
+
 module.exports = function (proxy) {
@@ -51,2 +72,9 @@ proxy.ws = function ws (req, socket, head, options, callback) {
       async ureq => {
+        for (const key of tlsOptions) {
+          if (Reflect.has(options, key)) {
+            const value = Reflect.get(options, key);
+            Reflect.set(ureq, key, value);
+          }
+        }
+
         if (hostname !== undefined) {
@@ -53,0 +81,0 @@ ureq.hostname = hostname

package.json

 {
   "name": "http2-proxy",
-  "version": "5.0.46",
+  "version": "5.0.47",
+  "types": "index.d.ts",
   "scripts": {
@@ -5,0 +6,0 @@ "test": "jest",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

30047

increased by9.48%

Number of package files

12

increased by9.09%

Lines of code

670

increased by14.53%

Worsened metrics

Number of medium supply chain risk alerts

8

increased by14.29%

No dependency changes