includejs - npm Package Compare versions

Comparing version 0.9.2 to 0.9.21

package.json

@@ -9,3 +9,3 @@ {
   },
-  "version": "0.9.2",
+  "version": "0.9.21",
   "bin": {
@@ -12,0 +12,0 @@ "includejs": "includejs",

src/libjs/include.node.js

@@ -1398,3 +1398,9 @@
 					var delimiter = process.platform === 'win32' ? ';' : ':',
-						parts = process.env.path.split(delimiter),
+						PATH = process.env.PATH || process.env.path;
+	
+					if (!PATH){
+						console.error('PATH not defined in env', process.env);
+					}
+	
+					var parts = PATH.split(delimiter),
 						globalPath = ruqq.arr.first(parts, function(x){
@@ -1401,0 +1407,0 @@ return /([\\\/]npm[\\\/])|([\\\/]npm$)/gi.test(x);

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

1334735

increased by0.01%

Lines of code

28153

increased by0.01%

Worsened metrics

Number of low supply chain risk alerts

28

increased by7.69%

No dependency changes