j - npm Package Compare versions
Comparing version 0.3.7 to 0.3.8
6
j.js
| /* j -- (C) 2013-2014 SheetJS -- http://sheetjs.com */ | ||
| /* vim: set ts=2: */ | ||
| /*jshint node:true */ | ||
| var XLSX = require('xlsx'); | ||
| var XLS = require('xlsjs'); | ||
| var fs = require('fs'); | ||
| var XLSX = require('xl'+'sx'); | ||
| var XLS = require('xl'+'sjs'); | ||
| var fs = require('f'+'s'); | ||
| var readFileSync = function(filename, options) { | ||
@@ -8,0 +8,0 @@ var f = fs.readFileSync(filename); |
| { | ||
| "name": "j", | ||
| "version": "0.3.7", | ||
| "version": "0.3.8", | ||
| "author": "sheetjs", | ||
@@ -10,2 +10,8 @@ "description": "CLI tool for working with XLS/XLSX/XLSM/XLSB files", | ||
| }, | ||
| "files": [ | ||
| "LICENSE", | ||
| "README.md", | ||
| "bin", | ||
| "j.js" | ||
| ], | ||
| "main": "./j", | ||
@@ -12,0 +18,0 @@ "dependencies": { |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-40%
3
Worsened metrics
- Total package byte prevSize
- decreased by-71.85%
13910
- Number of package files
- decreased by-72.22%
5
- Lines of code
- decreased by-35.84%
145