kexec - npm Package Compare versions

Comparing version 0.0.3 to 0.1.0

demo/demo.js

@@ -1,4 +0,2 @@
-var util = require('util');
-var kexec = require('kexec')
-
-kexec('node');
+var kexec = require('../')
+kexec('top');

index.js

@@ -1,9 +0,9 @@
-var kexec;
+var kexec = null;
 
-try {
+/*try {
   kexec = require("./build/default/kexec.node");
-} catch(e) {
+} catch(e) {*/
   kexec = require("./build/Release/kexec.node");
-}
+//}
 
 module.exports = kexec.kexec; //function of kexec module is named kexec

package.json

 {
     "name" : "kexec", 
-    "version" : "0.0.3", 
+    "version" : "0.1.0", 
     "description" : "Replace your Node.js process with another process. Like Ruby exec.", 
@@ -12,3 +12,3 @@ "homepage" : [
     }, 
-    "keywords" : ["exec","spawn","process"], 
+    "keywords" : ["exec","spawn","process", "kexec"], 
     "author" : "JP Richardson <jprichardson@gmail.com>", 
@@ -20,5 +20,8 @@ "licenses" : [ {"type" : "MIT" } ],
     },
-    "scripts": { "install": "node-waf configure build" }
+    "scripts": { "install": "node-gyp configure build" },
+    "devDependencies": {
+        "mocha": "*"
+    }
 }
 
      

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Non-existent author

Supply chain risk

The package was published by an npm account that no longer exists.

Found 1 instance in 1 package

Native code

Supply chain risk

Contains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.

Found 1 instance in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Install scripts

Supply chain risk

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Found 1 instance in 1 package

Trivial Package

Supply chain risk

Packages less than 10 lines of code are easily copied into your own project and may not warrant the additional supply chain risk of an external dependency.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

5857

increased by28.98%

Number of package files

13

increased by44.44%

Lines of code

19

increased by137.5%

Number of lines in readme file

47

increased by17.5%

Worsened metrics

Dev dependency count

1

increased byInfinity%

Number of medium supply chain risk alerts

2

increased by100%

No dependency changes