Comparing version 10.0.5 to 11.0.0
{ | ||
"name": "hubot", | ||
"version": "10.0.5", | ||
"version": "11.0.0", | ||
"author": "hubot", | ||
@@ -18,3 +18,2 @@ "keywords": [ | ||
"dependencies": { | ||
"coffeescript": "^2.7.0", | ||
"connect-multiparty": "^2.2.0", | ||
@@ -32,3 +31,3 @@ "express": "^4.18.2", | ||
}, | ||
"main": "./index", | ||
"main": "./index.mjs", | ||
"bin": { | ||
@@ -35,0 +34,0 @@ "hubot": "./bin/hubot" |
@@ -9,6 +9,5 @@ ![Pipeline Status](https://github.com/hubotio/hubot/actions/workflows/pipeline.yml/badge.svg) | ||
**Note: v10.0.4 contains the removal of CoffeeScript** | ||
**Note: v10.0.4 accidentaly contains the removal of CoffeeScript; v10.0.5 puts it back in** | ||
**Note: v11 removes CoffeeScript and converts this codebase to ESM** | ||
Semver is looking for **BREAKING CHANGE** singular, not **BREAKING CHANGES**. As a result, the removal of CoffeeScript was marked as the `v10.0.4` release. | ||
Hubot is a framework to build chat bots, modeled after GitHub's Campfire bot of the same name, hubot. | ||
@@ -15,0 +14,0 @@ He's pretty cool. He's [extendable with scripts](https://hubotio.github.io/hubot/docs#scripts) and can work |
Sorry, the diff of this file is not supported yet
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
4
2503
27
1
96569
24
39
- Removedcoffeescript@^2.7.0
- Removedcoffeescript@2.7.0(transitive)