iopipe - npm Package Compare versions
Comparing version 0.3.1 to 0.4.0
| { | ||
| "name": "iopipe", | ||
| "version": "0.3.1", | ||
| "version": "0.4.0", | ||
| "description": "IOpipe Lambda Analytics & Tracing Agent", | ||
| "main": "index.js", | ||
| "main": "dist/iopipe.js", | ||
| "scripts": { | ||
| "test": "istanbul cover jasmine --captureExceptions" | ||
| "test": "istanbul cover jasmine --captureExceptions", | ||
| "build": "webpack --progress --profile --colors", | ||
| "prepare": "webpack --progress --profile --colors" | ||
| }, | ||
@@ -13,2 +15,5 @@ "repository": { | ||
| }, | ||
| "files": [ | ||
| "dist/" | ||
| ], | ||
| "keywords": [ | ||
@@ -29,8 +34,2 @@ "serverless", | ||
| "homepage": "https://github.com/iopipe/iopipe#readme", | ||
| "dependencies": { | ||
| "bluebird": "^3.4.6", | ||
| "crypto": "0.0.3", | ||
| "request": "^2.65.0", | ||
| "uuid": "^3.0.1" | ||
| }, | ||
| "devDependencies": { | ||
@@ -42,4 +41,5 @@ "aws-lambda-mock-context": "^3.0.0", | ||
| "istanbul": "^0.4.4", | ||
| "jasmine": "^2.4.1" | ||
| "jasmine": "^2.4.1", | ||
| "webpack": "2.6.1" | ||
| } | ||
| } |
New alerts
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 4 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Dependency count
- decreased by-100%
0
- Number of low supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Total package byte prevSize
- decreased by-92.14%
13858
- Dev dependency count
- increased by16.67%
7
- Number of package files
- decreased by-90%
3
- Lines of code
- decreased by-100%
0
- Number of medium supply chain risk alerts
- increased by100%
2
Dependency changes
- Removedbluebird@^3.4.6
- Removedcrypto@0.0.3
- Removedrequest@^2.65.0
- Removeduuid@^3.0.1
- Removedajv@6.12.6(transitive)
- Removedasn1@0.2.6(transitive)
- Removedassert-plus@1.0.0(transitive)
- Removedasynckit@0.4.0(transitive)
- Removedaws-sign2@0.7.0(transitive)
- Removedaws4@1.13.2(transitive)
- Removedbcrypt-pbkdf@1.0.2(transitive)
- Removedbluebird@3.7.2(transitive)
- Removedcaseless@0.12.0(transitive)
- Removedcombined-stream@1.0.8(transitive)
- Removedcore-util-is@1.0.2(transitive)
- Removedcrypto@0.0.3(transitive)
- Removeddashdash@1.14.1(transitive)
- Removeddelayed-stream@1.0.0(transitive)
- Removedecc-jsbn@0.1.2(transitive)
- Removedextend@3.0.2(transitive)
- Removedextsprintf@1.3.0(transitive)
- Removedfast-deep-equal@3.1.3(transitive)
- Removedfast-json-stable-stringify@2.1.0(transitive)
- Removedforever-agent@0.6.1(transitive)
- Removedform-data@2.3.3(transitive)
- Removedgetpass@0.1.7(transitive)
- Removedhar-schema@2.0.0(transitive)
- Removedhar-validator@5.1.5(transitive)
- Removedhttp-signature@1.2.0(transitive)
- Removedis-typedarray@1.0.0(transitive)
- Removedisstream@0.1.2(transitive)
- Removedjsbn@0.1.1(transitive)
- Removedjson-schema@0.4.0(transitive)
- Removedjson-schema-traverse@0.4.1(transitive)
- Removedjson-stringify-safe@5.0.1(transitive)
- Removedjsprim@1.4.2(transitive)
- Removedmime-db@1.52.0(transitive)
- Removedmime-types@2.1.35(transitive)
- Removedoauth-sign@0.9.0(transitive)
- Removedperformance-now@2.1.0(transitive)
- Removedpsl@1.15.0(transitive)
- Removedpunycode@2.3.1(transitive)
- Removedqs@6.5.3(transitive)
- Removedrequest@2.88.2(transitive)
- Removedsafe-buffer@5.2.1(transitive)
- Removedsafer-buffer@2.1.2(transitive)
- Removedsshpk@1.18.0(transitive)
- Removedtough-cookie@2.5.0(transitive)
- Removedtunnel-agent@0.6.0(transitive)
- Removedtweetnacl@0.14.5(transitive)
- Removeduri-js@4.4.1(transitive)
- Removeduuid@3.4.0(transitive)
- Removedverror@1.10.0(transitive)