inst - npm Package Compare versions
+14
-20
| var path = require('path'), | ||
| fs = require('fs'), | ||
| tar = require('tar'), | ||
| fstream = require('fstream'); | ||
| tar = require('tar'); | ||
@@ -20,13 +19,9 @@ | ||
| var dest = fs.createWriteStream(pkg); | ||
| var packer = tar.Pack({noProprietary: true}) | ||
| .on('error', _cb) | ||
| .on('end', _cb); | ||
| fstream.Reader({path: dir, type: 'Directory'}) | ||
| .pipe(packer) | ||
| .pipe(dest) | ||
| .on('error', _cb) | ||
| .on('end', _cb); | ||
| tar.c({ | ||
| cwd: path.dirname(dir), | ||
| file: pkg, | ||
| portable: true | ||
| }, [path.basename(dir)]).then(function() { | ||
| _cb(); | ||
| }).catch(_cb); | ||
| }; | ||
@@ -43,9 +38,8 @@ | ||
| var extractor = tar.Extract({path: dir}) | ||
| .on('error', _cb) | ||
| .on('end', _cb); | ||
| fs.createReadStream(pkg) | ||
| .on('error', _cb) | ||
| .pipe(extractor); | ||
| tar.x({ | ||
| cwd: dir, | ||
| file: pkg | ||
| }).then(function() { | ||
| _cb(); | ||
| }).catch(_cb); | ||
| }; |
+3
-4
| { | ||
| "name": "inst", | ||
| "version": "1.1.0", | ||
| "version": "2.0.0", | ||
| "publishConfig": { | ||
@@ -9,5 +9,4 @@ "registry": "https://registry.npmjs.org/" | ||
| "commander": "^2.9.0", | ||
| "fstream": "^1.0.8", | ||
| "npm": "^2.14.13", | ||
| "tar": "^2.2.1" | ||
| "tar": "^7.5.9" | ||
| }, | ||
@@ -45,4 +44,4 @@ "description": "Faster npm installs via caching whole node_module dir", | ||
| "engines": { | ||
| "node": "^4.2" | ||
| "node": ">=14" | ||
| } | ||
| } |
@@ -15,3 +15,3 @@ var assert = require('assert'), | ||
| fs.mkdirSync(base, 0755); | ||
| fs.mkdirSync(base, 0o755); | ||
| fs.writeFileSync(base + '/1.tar', 'data'); | ||
@@ -18,0 +18,0 @@ setTimeout(function() { |
Sorry, the diff of this file is not supported yet
New alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
Improved metrics
- Dependency count
3
-25%- Number of low supply chain risk alerts
7
-12.5%Worsened metrics
- Total package byte prevSize
15898
-1.72%- Number of package files
16
-5.88%- Lines of code
294
-1.01%Dependency changes
+ Added
@isaacs/fs-minipass@4.0.1(transitive)+ Added
chownr@3.0.0(transitive)+ Added
minipass@7.1.3(transitive)+ Added
minizlib@3.1.0(transitive)+ Added
tar@7.5.13(transitive)+ Added
yallist@5.0.0(transitive)- Removed
fstream@^1.0.8- Removed
balanced-match@1.0.2(transitive)- Removed
block-stream@0.0.9(transitive)- Removed
brace-expansion@1.1.14(transitive)- Removed
concat-map@0.0.1(transitive)- Removed
fs.realpath@1.0.0(transitive)- Removed
fstream@1.0.12(transitive)- Removed
glob@7.2.3(transitive)- Removed
graceful-fs@4.2.11(transitive)- Removed
inflight@1.0.6(transitive)- Removed
inherits@2.0.4(transitive)- Removed
minimatch@3.1.5(transitive)- Removed
minimist@1.2.8(transitive)- Removed
mkdirp@0.5.6(transitive)- Removed
once@1.4.0(transitive)- Removed
path-is-absolute@1.0.1(transitive)- Removed
rimraf@2.7.1(transitive)- Removed
tar@2.2.2(transitive)- Removed
wrappy@1.0.2(transitive)Updated
tar@^7.5.9