metals-languageclient
Advanced tools
metals-languageclient - npm Package Compare versions
Comparing version 0.1.3 to 0.1.4
| { | ||
| "name": "metals-languageclient", | ||
| "version": "0.1.3", | ||
| "version": "0.1.4", | ||
| "description": "Language Client library for Node.js Metals clients", | ||
@@ -14,3 +14,3 @@ "main": "lib/index.js", | ||
| "scripts": { | ||
| "prepublish": "tsc" | ||
| "prepublish": "rm -rf lib && tsc" | ||
| }, | ||
@@ -20,2 +20,3 @@ "devDependencies": { | ||
| "@types/semver": "^6.2.0", | ||
| "@types/shell-quote": "^1.6.1", | ||
| "typescript": "^3.7.5" | ||
@@ -26,4 +27,5 @@ }, | ||
| "locate-java-home": "^1.1.2", | ||
| "semver": "^7.1.1" | ||
| "semver": "^7.1.1", | ||
| "shell-quote": "^1.7.2" | ||
| } | ||
| } |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by17.02%
6457
- Lines of code
- increased by40.19%
150
Worsened metrics
- Dependency count
- increased by33.33%
4
- Dev dependency count
- increased by33.33%
4
- Number of package files
- decreased by-50%
5
- Number of low supply chain risk alerts
- increased by150%
5
Dependency changes
+ Addedshell-quote@^1.7.2
+ Addedshell-quote@1.8.1(transitive)