husky
Advanced tools
Comparing version 4.3.0 to 5.0.0-alpha.0
157
package.json
| { | ||
| "name": "husky", | ||
| "version": "4.3.0", | ||
| "description": "Prevents bad commit or push (git hooks, pre-commit/precommit, pre-push/prepush, post-merge/postmerge and all that stuff...)", | ||
| "bin": { | ||
| "husky-run": "./bin/run.js", | ||
| "husky-upgrade": "./lib/upgrader/bin.js" | ||
| "version": "5.0.0-alpha.0", | ||
| "description": "Git hooks made easy", | ||
| "bin": "lib/bin.js", | ||
| "files": [ | ||
| "/lib", | ||
| "/scripts", | ||
| "LICENSE", | ||
| "LICENSE-MIT", | ||
| "LICENSE-PARITY", | ||
| "LICENSE-PATRON" | ||
| ], | ||
| "dependencies": {}, | ||
| "devDependencies": { | ||
| "@commitlint/cli": "^11.0.0", | ||
| "@commitlint/config-conventional": "^11.0.0", | ||
| "@commitlint/prompt-cli": "^11.0.0", | ||
| "@tsconfig/node10": "^1.0.7", | ||
| "@types/node": "^14.10.1", | ||
| "@typescript-eslint/eslint-plugin": "^4.1.1", | ||
| "@typescript-eslint/parser": "^4.1.1", | ||
| "docsify-cli": "^4.4.1", | ||
| "eslint": "^7.9.0", | ||
| "eslint-config-prettier": "^6.11.0", | ||
| "eslint-plugin-prettier": "^3.1.4", | ||
| "pinst": "^2.0.0", | ||
| "prettier": "^2.1.1", | ||
| "type-fest": "^0.16.0", | ||
| "typescript": "^4.0.2" | ||
| }, | ||
| "engines": { | ||
| "node": ">=10" | ||
| }, | ||
| "scripts": { | ||
| "test": "npm run lint && jest", | ||
| "install": "node husky install", | ||
| "preuninstall": "node husky uninstall", | ||
| "build": "del-cli lib && tsc", | ||
| "version": "jest -u && git add -A src/installer/__tests__/__snapshots__", | ||
| "postversion": "git push && git push --tags", | ||
| "prepublishOnly": "npm run test && npm run build && pinst --enable && pkg-ok", | ||
| "postpublish": "pinst --disable", | ||
| "build": "tsc", | ||
| "serve": "docsify serve docs", | ||
| "lint": "eslint . --ext .js,.ts --ignore-path .gitignore", | ||
| "fix": "npm run lint -- --fix", | ||
| "doc": "markdown-toc -i README.md", | ||
| "postinstall": "opencollective-postinstall || exit 0" | ||
| "_postinstall": "npm run build && node lib/bin install", | ||
| "prepack": "pinst --disable", | ||
| "postpack": "pinst --enable", | ||
| "prepublish": "pinst --disable", | ||
| "postpublish": "pinst --enable", | ||
| "pretest": "npm run build && npm pack", | ||
| "test": "sh ./test/default.sh && sh ./test/subdir.sh", | ||
| "posttest": "rm husky-*.tgz", | ||
| "commit": "commit" | ||
| }, | ||
| "engines": { | ||
| "node": ">= 10" | ||
| }, | ||
| "repository": { | ||
@@ -34,15 +57,24 @@ "type": "git", | ||
| "hooks", | ||
| "test", | ||
| "lint", | ||
| "applypatch-msg", | ||
| "pre-applypatch", | ||
| "post-applypatch", | ||
| "pre-commit", | ||
| "precommit", | ||
| "pre-merge-commit", | ||
| "prepare-commit-msg", | ||
| "commit-msg", | ||
| "post-commit", | ||
| "postcommit", | ||
| "pre-rebase", | ||
| "post-checkout", | ||
| "post-merge", | ||
| "pre-push", | ||
| "prepush", | ||
| "post-merge", | ||
| "postmerge", | ||
| "test", | ||
| "lint" | ||
| "post-update", | ||
| "push-to-checkout", | ||
| "pre-auto-gc", | ||
| "post-rewrite", | ||
| "sendemail-validate" | ||
| ], | ||
| "author": "Typicode <typicode@gmail.com>", | ||
| "license": "MIT", | ||
| "license": "See LICENSE file", | ||
| "bugs": { | ||
@@ -52,65 +84,12 @@ "url": "https://github.com/typicode/husky/issues" | ||
| "homepage": "https://github.com/typicode/husky#readme", | ||
| "dependencies": { | ||
| "chalk": "^4.0.0", | ||
| "ci-info": "^2.0.0", | ||
| "compare-versions": "^3.6.0", | ||
| "cosmiconfig": "^7.0.0", | ||
| "find-versions": "^3.2.0", | ||
| "opencollective-postinstall": "^2.0.2", | ||
| "pkg-dir": "^4.2.0", | ||
| "please-upgrade-node": "^3.2.0", | ||
| "slash": "^3.0.0", | ||
| "which-pm-runs": "^1.0.0" | ||
| }, | ||
| "devDependencies": { | ||
| "@types/ci-info": "^2.0.0", | ||
| "@types/cosmiconfig": "^6.0.0", | ||
| "@types/jest": "^25.2.1", | ||
| "@types/mkdirp": "^1.0.0", | ||
| "@types/node": "^13.11.1", | ||
| "@typescript-eslint/eslint-plugin": "^2.27.0", | ||
| "@typescript-eslint/parser": "^2.27.0", | ||
| "cross-env": "^7.0.2", | ||
| "del": "^5.1.0", | ||
| "del-cli": "^3.0.0", | ||
| "eslint": "^6.8.0", | ||
| "eslint-config-prettier": "^6.10.1", | ||
| "eslint-config-xo-space": "^0.24.0", | ||
| "eslint-plugin-prettier": "^3.1.2", | ||
| "formatree": "^1.0.2", | ||
| "jest": "^25.3.0", | ||
| "markdown-toc": "^1.2.0", | ||
| "mkdirp": "^1.0.4", | ||
| "pinst": "^2.0.0", | ||
| "pkg-ok": "^2.3.1", | ||
| "prettier": "^2.0.4", | ||
| "tempy": "^0.5.0", | ||
| "ts-jest": "^25.3.1", | ||
| "type-fest": "^0.13.1", | ||
| "typescript": "^3.8.3" | ||
| }, | ||
| "jest": { | ||
| "transform": { | ||
| "^.+\\.tsx?$": "ts-jest" | ||
| "funding": [ | ||
| { | ||
| "type": "github", | ||
| "url": "https://github.com/sponsors/typicode" | ||
| }, | ||
| "testRegex": "(/__tests__/.*|(\\.|/)(test|spec))\\.(jsx?|tsx?)$", | ||
| "testPathIgnorePatterns": [ | ||
| "node_modules", | ||
| "__env__.ts" | ||
| ], | ||
| "moduleFileExtensions": [ | ||
| "ts", | ||
| "js", | ||
| "json", | ||
| "node" | ||
| ] | ||
| }, | ||
| "collective": { | ||
| "type": "opencollective", | ||
| "url": "https://opencollective.com/husky" | ||
| }, | ||
| "funding": { | ||
| "type": "opencollective", | ||
| "url": "https://opencollective.com/husky" | ||
| } | ||
| { | ||
| "type": "opencollective", | ||
| "url": "https://opencollective.com/husky" | ||
| } | ||
| ] | ||
| } |
340
README.md
@@ -1,2 +0,2 @@ | ||
| # Husky | ||
| # husky | ||
@@ -7,338 +7,4 @@ [](https://opencollective.com/husky) [](https://www.npmjs.org/package/husky) [](https://travis-ci.org/typicode/husky) [](https://ci.appveyor.com/project/typicode/husky) | ||
| Husky can prevent bad `git commit`, `git push` and more 🐶 _woof!_ | ||
| Husky improves your commits and more 🐶*woof!* | ||
| ## Install | ||
| ```sh | ||
| npm install husky --save-dev | ||
| ``` | ||
| ```js | ||
| // package.json | ||
| { | ||
| "husky": { | ||
| "hooks": { | ||
| "pre-commit": "npm test", | ||
| "pre-push": "npm test", | ||
| "...": "..." | ||
| } | ||
| } | ||
| } | ||
| ``` | ||
| ```sh | ||
| git commit -m 'Keep calm and commit' | ||
| ``` | ||
| _Existing hooks are kept. Requires Node `>= 10` and Git `>= 2.13.0`._ | ||
| ## Reinstall | ||
| If Husky is already in your `node_modules` or `pnp.js` (Yarn 2) and you want to reinstall hooks, you can run `npm rebuild` or `yarn rebuild`. | ||
| ## Uninstall | ||
| ```sh | ||
| npm uninstall husky | ||
| ``` | ||
| _Git hooks installed by husky will be removed._ | ||
| ## Financial Contributors | ||
| Become a financial contributor and help us sustain our community ❤️ [[Contribute](https://opencollective.com/husky/contribute)] | ||
| ### Organizations | ||
| Support this project with your organization. Your logo will show up here with a link to your website. [[Contribute](https://opencollective.com/husky/contribute)] | ||
| <!-- oc --> | ||
| #### Gold Sponsors ($500+ / month) | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/0/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/0/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/1/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/1/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/2/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/2/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/3/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/3/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/4/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/4/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/5/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/5/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/6/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/6/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/7/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/7/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/8/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/8/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/gold-sponsor/9/website"><img src="https://opencollective.com/husky/tiers/gold-sponsor/9/avatar.svg" height="60px"></a> | ||
| #### Silver Sponsors ($250+ / month) | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/0/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/0/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/1/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/1/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/2/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/2/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/3/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/3/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/4/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/4/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/5/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/5/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/6/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/6/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/7/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/7/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/8/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/8/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/silver-sponsor/9/website"><img src="https://opencollective.com/husky/tiers/silver-sponsor/9/avatar.svg" height="60px"></a> | ||
| #### Bronze Sponsors ($100+ / month) | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/0/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/0/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/1/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/1/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/2/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/2/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/3/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/3/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/4/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/4/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/5/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/5/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/6/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/6/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/7/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/7/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/8/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/8/avatar.svg" height="60px"></a> | ||
| <a href="https://opencollective.com/husky/tiers/bronze-sponsor/9/website"><img src="https://opencollective.com/husky/tiers/bronze-sponsor/9/avatar.svg" height="60px"></a> | ||
| <!-- oc-end --> | ||
| ### Individuals | ||
| <a href="https://opencollective.com/husky"><img src="https://opencollective.com/husky/individuals.svg?width=890" height="200px"></a> | ||
| ## Used by | ||
| * [webpack](https://github.com/webpack/webpack) | ||
| * [babel](https://github.com/babel/babel) | ||
| * [create-react-app](https://github.com/facebookincubator/create-react-app) | ||
| * ... and many other awesome projects | ||
| ## Guides | ||
| <!-- toc --> | ||
| * [Upgrading from 0.14](#upgrading-from-014) | ||
| * [Supported hooks](#supported-hooks) | ||
| * [Access Git params and stdin](#access-git-params-and-stdin) | ||
| * [Skip all hooks (rebase)](#skip-all-hooks-rebase) | ||
| * [Disable auto-install](#disable-auto-install) | ||
| * [CI servers](#ci-servers) | ||
| * [Monorepos](#monorepos) | ||
| * [Node version managers](#node-version-managers) | ||
| * [Local commands (~/.huskyrc)](#local-commands-huskyrc) | ||
| * [Multiple commands](#multiple-commands) | ||
| * [Troubleshoot](#troubleshoot) | ||
| + [Debug messages](#debug-messages) | ||
| + [Hooks aren't running](#hooks-arent-running) | ||
| + [Commits aren't blocked](#commits-arent-blocked) | ||
| + [Commits are slow](#commits-are-slow) | ||
| + [Testing husky in a new repo](#testing-husky-in-a-new-repo) | ||
| + [ENOENT error 'node_modules/husky/.git/hooks'](#enoent-error-node_moduleshuskygithooks) | ||
| <!-- tocstop --> | ||
| ### Upgrading from 0.14 | ||
| Run `husky-upgrade` to automatically upgrade your configuration: | ||
| ``` | ||
| npx --no-install husky-upgrade | ||
| ``` | ||
| You can also do it manually. Move your existing hooks to `husky.hooks` field and use raw Git hooks names. Also, if you were using `GIT_PARAMS` env variable, rename it to `HUSKY_GIT_PARAMS`. | ||
| ```diff | ||
| { | ||
| "scripts": { | ||
| - "precommit": "npm test", | ||
| - "commitmsg": "commitlint -E GIT_PARAMS" | ||
| }, | ||
| + "husky": { | ||
| + "hooks": { | ||
| + "pre-commit": "npm test", | ||
| + "commit-msg": "commitlint -E HUSKY_GIT_PARAMS" | ||
| + } | ||
| + } | ||
| } | ||
| ``` | ||
| Starting with `1.0.0`, husky can be configured using `.huskyrc`, `.huskyrc.json`, `.huskyrc.yaml`, `.huskyrc.yml`, `.huskyrc.js` or `husky.config.js` file. | ||
| ```js | ||
| // .huskyrc | ||
| { | ||
| "hooks": { | ||
| "pre-commit": "npm test" | ||
| } | ||
| } | ||
| ``` | ||
| ### Supported hooks | ||
| Husky supports all Git hooks defined [here](https://git-scm.com/docs/githooks). Server-side hooks (`pre-receive`, `update` and `post-receive`) aren't supported. | ||
| ### Access Git params and stdin | ||
| Git hooks can get parameters via command-line arguments and stdin. Husky makes them accessible via `HUSKY_GIT_PARAMS` and `HUSKY_GIT_STDIN` environment variables. | ||
| ``` | ||
| "commit-msg": "echo $HUSKY_GIT_PARAMS" | ||
| ``` | ||
| ### Skip all hooks (rebase) | ||
| During a rebase you may want to skip all hooks, you can use `HUSKY_SKIP_HOOKS` environment variable. | ||
| ```sh | ||
| HUSKY_SKIP_HOOKS=1 git rebase ... | ||
| ``` | ||
| ### Disable auto-install | ||
| If you don't want husky to automatically install Git hooks, simply set `HUSKY_SKIP_INSTALL` environment variable. | ||
| ```sh | ||
| HUSKY_SKIP_INSTALL=1 npm install | ||
| ``` | ||
| ### CI servers | ||
| By default, Husky won't install on CI servers. | ||
| ### Monorepos | ||
| If you have a multi-package repository, it's __recommended__ to use tools like [lerna](https://github.com/lerna/lerna) and have husky installed ONLY in the root `package.json` to act as the source of truth. | ||
| Generally speaking, you should AVOID defining husky in multiple `package.json`, as each package would overwrite previous husky installation. | ||
| ```sh | ||
| . | ||
| └── root | ||
| ├── .git | ||
| ├── package.json 🐶 # Add husky here | ||
| └── packages | ||
| ├── A | ||
| │ └── package.json | ||
| ├── B | ||
| │ └── package.json | ||
| └── C | ||
| └── package.json | ||
| ``` | ||
| ```js | ||
| // root/package.json | ||
| { | ||
| "private": true, | ||
| "devDependencies": { | ||
| "husky": "..." | ||
| }, | ||
| "husky": { | ||
| "hooks": { | ||
| "pre-commit": "lerna run test" | ||
| } | ||
| } | ||
| } | ||
| ``` | ||
| ### Node version managers | ||
| If you're on Windows, husky will simply use the version installed globally on your system. | ||
| For macOS and Linux users: | ||
| - if you're running `git` commands in the terminal, husky will use the version defined in your shell `PATH`. In other words, if you're a `nvm` user, husky will use the version that you've set with `nvm`. | ||
| - if you're using a GUI client and `nvm`, it may have a different `PATH` and not load `nvm`, in this case the highest `node` version installed by `nvm` will usually be picked. You can also check `~/.node_path` to see which version is used by GUIs and edit if you want to use something else. | ||
| ### Local commands (~/.huskyrc) | ||
| Husky will source `~/.huskyrc` file if it exists before running hook scripts. | ||
| You can use it, for example, to load a node version manager or run some `shell` commands before hooks. | ||
| ```sh | ||
| # ~/.huskyrc | ||
| export NVM_DIR="$HOME/.nvm" | ||
| [ -s "$NVM_DIR/nvm.sh" ] && \. "$NVM_DIR/nvm.sh" | ||
| ``` | ||
| ### Multiple commands | ||
| By design and just like `scripts` defined in `package.json`, husky will run hook scripts as a single command. | ||
| ```json | ||
| "pre-commit": "cmd && cmd" | ||
| ``` | ||
| That said, if you prefer to use an array, the recommended approach is to define them in `.huskyrc.js` or `husky.config.js`. | ||
| ```js | ||
| const tasks = arr => arr.join(' && ') | ||
| module.exports = { | ||
| 'hooks': { | ||
| 'pre-commit': tasks([ | ||
| 'cmd', | ||
| 'cmd' | ||
| ]) | ||
| } | ||
| } | ||
| ``` | ||
| Tools like [npm-run-all](https://github.com/mysticatea/npm-run-all) can help too. | ||
| ### Troubleshoot | ||
| #### Debug messages | ||
| `HUSKY_DEBUG=1` can provide additional information when running commands. | ||
| ``` | ||
| HUSKY_DEBUG=1 npm install husky --save-dev | ||
| HUSKY_DEBUG=1 git commit ... | ||
| ``` | ||
| #### Hooks aren't running | ||
| Check if hooks were installed. Verify that `.git/hooks/pre-commit` exists and have husky code. It should start with: | ||
| ```sh | ||
| #!/bin/sh | ||
| # husky... | ||
| ``` | ||
| If not, you may have another Git hooks manager defined in your `package.json` overwriting husky's hooks. Check also the output during install, you should see: | ||
| ``` | ||
| husky > Setting up git hooks | ||
| husky > Done | ||
| ``` | ||
| #### Commits aren't blocked | ||
| For a commit to be blocked, `pre-commit` script must exit with a non-zero exit code. If you commit isn't blocked, check your script exit code. | ||
| #### Commits are slow | ||
| Husky is fast and only adds a few tenth of seconds to commits (`~0.3s` on a low-end PC). So it's most probably related to how many things are done during `pre-commit`. You can often improve this by using cache on your tools (babel, eslint, ...) and using [lint-staged](https://github.com/okonet/lint-staged). | ||
| #### Testing husky in a new repo | ||
| To isolate your issue, you can also create a new repo: | ||
| ```sh | ||
| mkdir foo && cd foo | ||
| git init && npm init -y | ||
| npm install husky --save-dev | ||
| # Add a failing pre-commit hook to your package.json: | ||
| # "pre-commit": "echo \"this should fail\" && exit 1" | ||
| # Make a commit | ||
| ``` | ||
| #### ENOENT error 'node_modules/husky/.git/hooks' | ||
| Verify that your version of Git is `>=2.13.0`. | ||
| ## See also | ||
| * [pkg-ok](https://github.com/typicode/pkg-ok) - Prevents publishing a module with bad paths or incorrect line endings | ||
| * [please-upgrade-node](https://github.com/typicode/please-upgrade-node) - Show a message to upgrade Node instead of a stacktrace in your CLIs | ||
| * [pinst](https://github.com/typicode/pinst) - dev only postinstall hook | ||
| ## Patreon | ||
| People and companies supporting via Patreon: [thanks](https://thanks.typicode.com) | ||
| ## License | ||
| MIT | ||
| [__Documentation__](/docs) |
Sorry, the diff of this file is not supported yet
New alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
SPDX disjunction
LicenseSPDX disjunction for an artifact's license information
Found 1 instance in 1 package
Mixed license
License(Experimental) Package contains multiple licenses.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Non-permissive License
License(Experimental) A license not known to be considered permissive was found
Found 1 instance in 1 package
Unidentified License
License(Experimental) Something that seems like a license was found, but its contents could not be matched with a known license
Found 2 instances in 1 package
Fixed alerts
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 2 instances in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 4 instances in 1 package
SPDX disjunction
LicenseSPDX disjunction for an artifact's license information
Found 1 instance in 1 package
Improved metrics
- Dependency count
- decreased by-100%
0
- Dev dependency count
- decreased by-40%
15
- Number of high supply chain risk alerts
- decreased by-100%
0
- Number of low supply chain risk alerts
- decreased by-69.23%
4
Worsened metrics
- Total package byte prevSize
- decreased by-68.36%
16126
- Number of package files
- decreased by-50%
12
- Number of low license alerts
- increased by400%
5
- License quality
- decreased by-20%
80
- Lines of code
- decreased by-80.45%
121
- Number of low quality alerts
- increased byInfinity%
1
- Number of lines in readme file
- decreased by-97.09%
10
Dependency changes
- Removedchalk@^4.0.0
- Removedci-info@^2.0.0
- Removedcompare-versions@^3.6.0
- Removedcosmiconfig@^7.0.0
- Removedfind-versions@^3.2.0
- Removedopencollective-postinstall@^2.0.2
- Removedpkg-dir@^4.2.0
- Removedplease-upgrade-node@^3.2.0
- Removedslash@^3.0.0
- Removedwhich-pm-runs@^1.0.0
- Removed@babel/code-frame@7.24.7(transitive)
- Removed@babel/helper-validator-identifier@7.24.7(transitive)
- Removed@babel/highlight@7.24.7(transitive)
- Removed@types/parse-json@4.0.2(transitive)
- Removedansi-styles@3.2.14.3.0(transitive)
- Removedcallsites@3.1.0(transitive)
- Removedchalk@2.4.24.1.2(transitive)
- Removedci-info@2.0.0(transitive)
- Removedcolor-convert@1.9.32.0.1(transitive)
- Removedcolor-name@1.1.31.1.4(transitive)
- Removedcompare-versions@3.6.0(transitive)
- Removedcosmiconfig@7.1.0(transitive)
- Removederror-ex@1.3.2(transitive)
- Removedescape-string-regexp@1.0.5(transitive)
- Removedfind-up@4.1.0(transitive)
- Removedfind-versions@3.2.0(transitive)
- Removedhas-flag@3.0.04.0.0(transitive)
- Removedimport-fresh@3.3.0(transitive)
- Removedis-arrayish@0.2.1(transitive)
- Removedjs-tokens@4.0.0(transitive)
- Removedjson-parse-even-better-errors@2.3.1(transitive)
- Removedlines-and-columns@1.2.4(transitive)
- Removedlocate-path@5.0.0(transitive)
- Removedopencollective-postinstall@2.0.3(transitive)
- Removedp-limit@2.3.0(transitive)
- Removedp-locate@4.1.0(transitive)
- Removedp-try@2.2.0(transitive)
- Removedparent-module@1.0.1(transitive)
- Removedparse-json@5.2.0(transitive)
- Removedpath-exists@4.0.0(transitive)
- Removedpath-type@4.0.0(transitive)
- Removedpicocolors@1.0.1(transitive)
- Removedpkg-dir@4.2.0(transitive)
- Removedplease-upgrade-node@3.2.0(transitive)
- Removedresolve-from@4.0.0(transitive)
- Removedsemver-compare@1.0.0(transitive)
- Removedsemver-regex@2.0.0(transitive)
- Removedslash@3.0.0(transitive)
- Removedsupports-color@5.5.07.2.0(transitive)
- Removedwhich-pm-runs@1.1.0(transitive)
- Removedyaml@1.10.2(transitive)