New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
js-tinyapi
Advanced tools
js-tinyapi - npm Package Compare versions
Comparing version 0.1.0-alpha.2 to 0.1.0-alpha.3
12
index.js
| (function webpackUniversalModuleDefinition(root, factory) { | ||
| if(typeof exports === 'object' && typeof module === 'object') | ||
| module.exports = factory(); | ||
| module.exports = factory(require("js-cookie")); | ||
| else if(typeof define === 'function' && define.amd) | ||
| define([], factory); | ||
| define(["js-cookie"], factory); | ||
| else if(typeof exports === 'object') | ||
| exports["js-tinyapi"] = factory(); | ||
| exports["js-tinyapi"] = factory(require("js-cookie")); | ||
| else | ||
| root["js-tinyapi"] = factory(); | ||
| })(window, function() { | ||
| root["js-tinyapi"] = factory(root["js-cookie"]); | ||
| })(window, function(__WEBPACK_EXTERNAL_MODULE_js_cookie__) { | ||
| return /******/ (function(modules) { // webpackBootstrap | ||
@@ -174,3 +174,3 @@ /******/ // The module cache | ||
| eval("module.exports = require(\"js-cookie\");\n\n//# sourceURL=webpack://js-tinyapi/external_%22js-cookie%22?"); | ||
| eval("module.exports = __WEBPACK_EXTERNAL_MODULE_js_cookie__;\n\n//# sourceURL=webpack://js-tinyapi/external_%22js-cookie%22?"); | ||
@@ -177,0 +177,0 @@ /***/ }) |
| { | ||
| "name": "js-tinyapi", | ||
| "version": "0.1.0-alpha.2", | ||
| "version": "0.1.0-alpha.3", | ||
| "description": "A simple and lightweight API helper.", | ||
@@ -33,11 +33,12 @@ "repository": { | ||
| "isomorphic-fetch": "^2.2.1", | ||
| "js-cookie": "^2.1.4", | ||
| "mocha": "^3.2.0", | ||
| "peer-deps-externals-webpack-plugin": "^1.0.2", | ||
| "sinon": "^4.4.2", | ||
| "webpack": "^4.0.1", | ||
| "webpack-cli": "^2.0.9", | ||
| "webpack-node-externals": "^1.6.0" | ||
| "webpack-cli": "^2.0.9" | ||
| }, | ||
| "dependencies": { | ||
| "peerDependencies": { | ||
| "js-cookie": "^2.1.4" | ||
| } | ||
| } |
New alerts
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.2%
81672
Worsened metrics
- Dev dependency count
- increased by6.25%
17
- Number of low supply chain risk alerts
- increased byInfinity%
6
- Number of medium supply chain risk alerts
- increased byInfinity%
8
Dependency changes
- Removedjs-cookie@^2.1.4