modular-aws-sdk-apigatewayv2 - npm Package Compare versions

Comparing version 0.0.1-security to 2.551.0

package.json

 {
   "name": "modular-aws-sdk-apigatewayv2",
-  "version": "0.0.1-security",
-  "description": "security holding package",
-  "repository": "npm/security-holder"
-}
+  "description": "AWS SDK for JavaScript",
+  "version": "2.551.0",
+  "author": {
+    "name": "Martin Wentzel",
+    "email": "",
+    "url": ""
+  },
+  "homepage": "https://github.com/Junkern/modular-aws-sdk-apigatewayv2",
+  "contributors": [
+    "Loren Segal <lsegal@amazon.com>",
+    "Trevor Rowe <trevrowe@amazon.com>"
+  ],
+  "dependencies": {
+    "buffer": "4.9.1",
+    "events": "1.1.1",
+    "ieee754": "1.1.13",
+    "jmespath": "0.15.0",
+    "querystring": "0.2.0",
+    "sax": "1.2.1",
+    "url": "0.10.3",
+    "uuid": "3.3.2",
+    "xml2js": "0.4.19"
+  },
+  "main": "lib/aws.js",
+  "directories": {
+    "lib": "lib"
+  },
+  "types": "index.d.ts",
+  "typings": "index.d.ts",
+  "engines": {
+    "node": ">= 0.8.0"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git://github.com/aws/aws-sdk-js"
+  },
+  "bugs": {
+    "url": "https://github.com/aws/aws-sdk-js/issues",
+    "mail": ""
+  },
+  "license": "Apache-2.0",
+  "keywords": [
+    "api",
+    "amazon",
+    "aws",
+    "ec2",
+    "simpledb",
+    "s3",
+    "sqs",
+    "ses",
+    "sns",
+    "route53",
+    "rds",
+    "elasticache",
+    "cloudfront",
+    "fps",
+    "cloudformation",
+    "cloudwatch",
+    "dynamodb",
+    "iam",
+    "swf",
+    "autoscaling",
+    "cloudsearch",
+    "elb",
+    "loadbalancing",
+    "emr",
+    "mapreduce",
+    "importexport",
+    "storagegateway",
+    "workflow",
+    "ebs",
+    "vpc",
+    "beanstalk",
+    "glacier",
+    "kinesis",
+    "cloudtrail",
+    "waf"
+  ]
+}

README.md

@@ -1,9 +0,3 @@
-# Security holding package
-
-This package name is not currently in use, but was formerly occupied
-by another package. To avoid malicious use, npm is hanging on to the
-package name, but loosely, and we'll probably give it to you if you
-want it.
-
-You may adopt this package by contacting support@npmjs.com and
-requesting the name.
+# modular-aws-sdk-apigatewayv2
+  This repository was created by https://github.com/Junkern/modular-aws-sdk
+  

New alerts

AI-detected possible typosquat

Supply chain risk

AI has identified this package as a potential typosquat of a more popular package. This suggests that the package may be intentionally mimicking another package's name, description, or other metadata.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 3 instances in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 17 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

AI-detected potential code anomaly

Supply chain risk

AI has identified unusual behaviors that may pose a security risk.

Found 1 instance in 1 package

Unidentified License

License

(Experimental) Something that seems like a license was found, but its contents could not be matched with a known license.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Fixed alerts

Known malware

Supply chain risk

This package version is identified as malware. It has been flagged either by Socket's AI scanner and confirmed by our threat research team, or is listed as malicious in security databases and other sources.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

No contributors or author data

Maintenance

Package does not specify a list of contributors or an author in package.json.

Found 1 instance in 1 package

No bug tracker

Maintenance

Package does not have a linked bug tracker in package.json.

Found 1 instance in 1 package

No License Found

License

(Experimental) License information could not be found.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

No website

Quality

Package does not have a website.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

1110923

227548.16%

Number of package files

182

9000%

Lines of code

28836

Infinity%

Number of low maintenance alerts

1

-66.67%

Number of low quality alerts

1

-50%

Number of critical supply chain risk alerts

0

-100%

Worsened metrics

Dependency count

9

Infinity%

License quality

80

-20%

Number of lines in readme file

3

-70%

Number of low supply chain risk alerts

52

5100%

Number of medium supply chain risk alerts

9

800%

Dependency changes

• + Added

  buffer@4.9.1

• + Added

  events@1.1.1

• + Added

  ieee754@1.1.13

• + Added

  jmespath@0.15.0

• + Added

  querystring@0.2.0

• + Added

  sax@1.2.1

• + Added

  url@0.10.3

• + Added

  uuid@3.3.2

• + Added

  xml2js@0.4.19

• + Added

  base64-js@1.5.1
  (transitive)

• + Added

  buffer@4.9.1
  (transitive)

• + Added

  events@1.1.1
  (transitive)

• + Added

  ieee754@1.1.13
  (transitive)

• + Added

  isarray@1.0.0
  (transitive)

• + Added

  jmespath@0.15.0
  (transitive)

• + Added

  punycode@1.3.2
  (transitive)

• + Added

  querystring@0.2.0
  (transitive)

• + Added

  sax@1.2.1
  (transitive)

• + Added

  url@0.10.3
  (transitive)

• + Added

  uuid@3.3.2
  (transitive)

• + Added

  xml2js@0.4.19
  (transitive)

• + Added

  xmlbuilder@9.0.7
  (transitive)