knx.js - npm Package Compare versions

Comparing version 0.6.1 to 0.6.2

package.json

 {
   "name": "knx.js",
-  "version": "0.6.1",
+  "version": "0.6.2",
   "private": false,
@@ -5,0 +5,0 @@ "repository": {

src/KnxConnection.js

@@ -118,6 +118,6 @@ /**
     if (this.debug)
-        console.log("[%s] Sending %s to %s.", this.ClassName, data, address);
+        console.log("[%s] Sending %s to %s.", this.ClassName, JSON.stringify(data), JSON.stringify(address));
     this.knxSender.Action(address, data);
     if (this.debug)
-        console.log("[%s] Sent %s to %s.", this.ClassName, data, address);
+        console.log("[%s] Sent %s to %s.", this.ClassName, JSON.stringify(data), JSON.stringify(address));
 }
@@ -132,6 +132,6 @@
     if (this.debug)
-        console.log("[%s] Sending request status to %s.", this.ClassName, address);
+        console.log("[%s] Sending request status to %s.", this.ClassName, JSON.stringify(address));
     this.knxSender.RequestStatus(address, callback);
     if (this.debug)
-        console.log("[%s] Sent request status to %s.", this.ClassName, address);
+        console.log("[%s] Sent request status to %s.", this.ClassName, JSON.stringify(address));
 }
@@ -138,0 +138,0 @@

src/KnxConnectionTunneling.js

@@ -184,3 +184,3 @@ /**
     return new Promise(function (fulfill, reject) {
-        //console.log('delay for ' + time + 'ms');
+        console.log('delay for ' + time + 'ms');
         setTimeout(fulfill, time);
@@ -187,0 +187,0 @@ });

src/KnxSender.js

@@ -31,3 +31,3 @@ /**
     // +--------+--------+--------+--------+----------------+----------------+--------+----------------+
-    //   1 byte   1 byte   1 byte   1 byte      2 bytes          2 bytes       1 byte      2 bytes
+    59//   1 byte   1 byte   1 byte   1 byte      2 bytes          2 bytes       1 byte      2 bytes
     //
@@ -99,2 +99,4 @@ //  Message Code    = 0x11 - a L_Data.req primitive
     KnxHelper.WriteData(datagram, data, i);
+    this.connection.debug && console.log('KnxSender.CreateActionDatagramCommon datagram[%s]', datagram.toString('hex'));
+    debugger;
     return datagram;
@@ -101,0 +103,0 @@ }

Fixed alerts

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Improved metrics

Number of low supply chain risk alerts

0

decreased by-100%

Number of medium supply chain risk alerts

1

decreased by-50%

Worsened metrics

Total package byte prevSize

65683

decreased by-3.8%

Number of package files

17

decreased by-5.56%

Lines of code

1311

decreased by-5.62%

No dependency changes