main-bower-files
Advanced tools
main-bower-files - npm Package Compare versions
Comparing version 0.0.0 to 1.0.0
| { | ||
| "name": "main-bower-files", | ||
| "version": "0.0.0", | ||
| "version": "1.0.0", | ||
| "description": "Get main files from your installed bower packages.", | ||
@@ -23,3 +23,11 @@ "main": "index.js", | ||
| }, | ||
| "homepage": "https://github.com/ck86/main-bower-files" | ||
| "homepage": "https://github.com/ck86/main-bower-files", | ||
| "devDependencies": { | ||
| "should": "^4.0.4", | ||
| "mocha": "^1.20.1" | ||
| }, | ||
| "dependencies": { | ||
| "colors": "^0.6.2", | ||
| "glob": "^4.0.3" | ||
| } | ||
| } |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by3035.23%
18153
- Number of package files
- increased by2550%
53
- Lines of code
- increased byInfinity%
506
- Number of low quality alerts
- decreased by-100%
0
Worsened metrics
- Dependency count
- increased byInfinity%
2
- Dev dependency count
- increased byInfinity%
2
- Number of low supply chain risk alerts
- increased byInfinity%
7
Dependency changes
+ Addedcolors@^0.6.2
+ Addedglob@^4.0.3
+ Addedbalanced-match@1.0.2(transitive)
+ Addedbrace-expansion@1.1.11(transitive)
+ Addedcolors@0.6.2(transitive)
+ Addedconcat-map@0.0.1(transitive)
+ Addedglob@4.5.3(transitive)
+ Addedinflight@1.0.6(transitive)
+ Addedinherits@2.0.4(transitive)
+ Addedminimatch@2.0.10(transitive)
+ Addedonce@1.4.0(transitive)
+ Addedwrappy@1.0.2(transitive)