luster - npm Package Compare versions

Comparing version 2.3.0 to 2.3.1

bin/luster.js

 #!/usr/bin/env node
 const /** @type {ClusterProcess} */
     luster = require('../lib/luster'),
+    fs = require('fs'),
     path = require('path');
 
 // config path is right after this script in process.argv
-const scriptArgvIndex = process.argv.findIndex(arg => arg === __filename || path.resolve(arg) === __filename);
+// path in the argument may be relative or symlink
+const scriptArgvIndex = process.argv.findIndex(arg => arg === __filename || fs.realpathSync(path.resolve(arg)) === __filename);
 const configFilePath = path.resolve(process.cwd(), process.argv[scriptArgvIndex + 1] || 'luster.conf');
 
 luster.configure(require(configFilePath), true, path.dirname(configFilePath)).run();

package.json

 {
   "name": "luster",
-  "version": "2.3.0",
+  "version": "2.3.1",
   "description": "Node.js cluster wrapper",
@@ -5,0 +5,0 @@ "main": "./lib/luster.js",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

87860

increased by0.1%

Lines of code

2225

increased by0.09%

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Number of low supply chain risk alerts

11

increased by10%

No dependency changes