isbot - npm Package Compare versions

Comparing version 2.3.2 to 2.4.0

index.js

@@ -1,2 +0,2 @@
-var list = require('./list');
+var list = require('./list.json');
 var regex;
@@ -3,0 +3,0 @@ function update() {

package.json

 {
   "name": "isbot",
-  "version": "2.3.2",
+  "version": "2.4.0",
   "description": "detects bots/crawlers/spiders via the user agent.",
@@ -8,3 +8,4 @@ "main": "index.js",
   "scripts": {
-    "test": "mocha test.js"
+    "test": "mocha test.js",
+    "sort": "node /scripts/sort.js"
   },
@@ -11,0 +12,0 @@ "repository": {

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Number of package files

7

increased by16.67%

Lines of code

994

increased by3.43%

Worsened metrics

Total package byte prevSize

20784

decreased by-4.51%

Number of low supply chain risk alerts

2

increased byInfinity%

Number of medium supply chain risk alerts

1

increased byInfinity%

No dependency changes