Comparing version 12.0.1 to 12.1.0
| { | ||
| "name": "meow", | ||
| "version": "12.0.1", | ||
| "version": "12.1.0", | ||
| "description": "CLI app helper", | ||
@@ -16,4 +16,5 @@ "license": "MIT", | ||
| "types": "./index.d.ts", | ||
| "default": "./source/index.js" | ||
| "default": "./build/index.js" | ||
| }, | ||
| "sideEffects": false, | ||
| "engines": { | ||
@@ -23,6 +24,8 @@ "node": ">=16.10" | ||
| "scripts": { | ||
| "test": "xo && ava && tsd" | ||
| "prepare": "npm run build", | ||
| "build": "rollup --config", | ||
| "test": "xo && tsd && npm run build && ava" | ||
| }, | ||
| "files": [ | ||
| "source", | ||
| "build", | ||
| "index.d.ts" | ||
@@ -49,25 +52,44 @@ ], | ||
| ], | ||
| "dependencies": { | ||
| "_actualDependencies": [ | ||
| "@types/minimist", | ||
| "camelcase-keys", | ||
| "decamelize", | ||
| "decamelize-keys", | ||
| "hard-rejection", | ||
| "minimist-options", | ||
| "normalize-package-data", | ||
| "read-pkg-up", | ||
| "redent", | ||
| "trim-newlines", | ||
| "type-fest", | ||
| "yargs-parser" | ||
| ], | ||
| "devDependencies": { | ||
| "@rollup/plugin-commonjs": "^25.0.3", | ||
| "@rollup/plugin-json": "^6.0.0", | ||
| "@rollup/plugin-node-resolve": "^15.1.0", | ||
| "@types/minimist": "^1.2.2", | ||
| "ava": "^5.3.1", | ||
| "camelcase-keys": "^8.0.2", | ||
| "common-tags": "^2.0.0-alpha.1", | ||
| "decamelize": "^6.0.0", | ||
| "decamelize-keys": "^2.0.1", | ||
| "delete_comments": "^0.0.2", | ||
| "execa": "^7.2.0", | ||
| "globby": "^13.2.2", | ||
| "hard-rejection": "^2.1.0", | ||
| "indent-string": "^5.0.0", | ||
| "minimist-options": "4.1.0", | ||
| "normalize-package-data": "^5.0.0", | ||
| "read-pkg-up": "^9.1.0", | ||
| "read-pkg": "^8.0.0", | ||
| "read-pkg-up": "^10.0.0", | ||
| "redent": "^4.0.0", | ||
| "rollup": "^3.27.0", | ||
| "rollup-plugin-license": "^3.0.1", | ||
| "trim-newlines": "^5.0.0", | ||
| "type-fest": "^3.9.0", | ||
| "tsd": "^0.28.1", | ||
| "type-fest": "^4.2.0", | ||
| "xo": "^0.56.0", | ||
| "yargs-parser": "^21.1.1" | ||
| }, | ||
| "devDependencies": { | ||
| "ava": "^5.2.0", | ||
| "common-tags": "^1.8.2", | ||
| "execa": "^7.1.1", | ||
| "indent-string": "^5.0.0", | ||
| "read-pkg": "^8.0.0", | ||
| "tsd": "^0.28.1", | ||
| "xo": "^0.54.2" | ||
| }, | ||
| "xo": { | ||
@@ -77,3 +99,6 @@ "rules": { | ||
| "unicorn/error-message": "off" | ||
| } | ||
| }, | ||
| "ignores": [ | ||
| "build" | ||
| ] | ||
| }, | ||
@@ -80,0 +105,0 @@ "ava": { |
@@ -18,2 +18,3 @@ # meow | ||
| - Sets the process title to the binary name defined in package.json | ||
| - No dependencies! | ||
@@ -20,0 +21,0 @@ ## Install |
New alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses eval() which is a dangerous function. This prevents the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 4 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
High entropy strings
Supply chain riskContains high entropy strings. This could be a sign of encrypted data, leaked secrets or obfuscated code.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by1110.83%
389705
- Dependency count
- decreased by-100%
0
- Number of package files
- increased by22.22%
11
- Lines of code
- increased by1361.87%
9546
- Number of lines in readme file
- increased by0.32%
315
Worsened metrics
- Dev dependency count
- increased by271.43%
26
- Number of low supply chain risk alerts
- increased byInfinity%
15
- Number of medium supply chain risk alerts
- increased byInfinity%
2
Dependency changes
- Removed@types/minimist@^1.2.2
- Removedcamelcase-keys@^8.0.2
- Removeddecamelize@^6.0.0
- Removeddecamelize-keys@^2.0.1
- Removedhard-rejection@^2.1.0
- Removedminimist-options@4.1.0
- Removednormalize-package-data@^5.0.0
- Removedread-pkg-up@^9.1.0
- Removedredent@^4.0.0
- Removedtrim-newlines@^5.0.0
- Removedtype-fest@^3.9.0
- Removedyargs-parser@^21.1.1
- Removed@babel/code-frame@7.24.2(transitive)
- Removed@babel/helper-validator-identifier@7.22.20(transitive)
- Removed@babel/highlight@7.24.2(transitive)
- Removed@types/minimist@1.2.5(transitive)
- Removed@types/normalize-package-data@2.4.4(transitive)
- Removedansi-styles@3.2.1(transitive)
- Removedarrify@1.0.1(transitive)
- Removedcamelcase@7.0.1(transitive)
- Removedcamelcase-keys@8.0.2(transitive)
- Removedchalk@2.4.2(transitive)
- Removedcolor-convert@1.9.3(transitive)
- Removedcolor-name@1.1.3(transitive)
- Removeddecamelize@6.0.0(transitive)
- Removeddecamelize-keys@2.0.1(transitive)
- Removederror-ex@1.3.2(transitive)
- Removedescape-string-regexp@1.0.5(transitive)
- Removedfind-up@6.3.0(transitive)
- Removedfunction-bind@1.1.2(transitive)
- Removedhard-rejection@2.1.0(transitive)
- Removedhas-flag@3.0.0(transitive)
- Removedhasown@2.0.2(transitive)
- Removedhosted-git-info@4.1.06.1.1(transitive)
- Removedindent-string@5.0.0(transitive)
- Removedis-arrayish@0.2.1(transitive)
- Removedis-core-module@2.13.1(transitive)
- Removedis-plain-obj@1.1.0(transitive)
- Removedjs-tokens@4.0.0(transitive)
- Removedjson-parse-even-better-errors@2.3.1(transitive)
- Removedkind-of@6.0.3(transitive)
- Removedlines-and-columns@1.2.4(transitive)
- Removedlocate-path@7.2.0(transitive)
- Removedlru-cache@6.0.07.18.3(transitive)
- Removedmap-obj@4.3.0(transitive)
- Removedmin-indent@1.0.1(transitive)
- Removedminimist-options@4.1.0(transitive)
- Removednormalize-package-data@3.0.35.0.0(transitive)
- Removedp-limit@4.0.0(transitive)
- Removedp-locate@6.0.0(transitive)
- Removedparse-json@5.2.0(transitive)
- Removedpath-exists@5.0.0(transitive)
- Removedpicocolors@1.0.0(transitive)
- Removedquick-lru@6.1.2(transitive)
- Removedread-pkg@7.1.0(transitive)
- Removedread-pkg-up@9.1.0(transitive)
- Removedredent@4.0.0(transitive)
- Removedsemver@7.6.0(transitive)
- Removedspdx-correct@3.2.0(transitive)
- Removedspdx-exceptions@2.5.0(transitive)
- Removedspdx-expression-parse@3.0.1(transitive)
- Removedspdx-license-ids@3.0.17(transitive)
- Removedstrip-indent@4.0.0(transitive)
- Removedsupports-color@5.5.0(transitive)
- Removedtrim-newlines@5.0.0(transitive)
- Removedtype-fest@2.19.03.13.1(transitive)
- Removedvalidate-npm-package-license@3.0.4(transitive)
- Removedyallist@4.0.0(transitive)
- Removedyargs-parser@21.1.1(transitive)
- Removedyocto-queue@1.0.0(transitive)