nearlib - npm Package Compare versions

Comparing version 0.5.0 to 0.5.1

index.js

@@ -10,7 +10,7 @@ const Near = require('./near');
 const WalletAccount = require('./wallet-account');
-const UnencryptedFileSystemKeyStore = require('./signing/unencrypted_file_system_keystore');
+// const UnencryptedFileSystemKeyStore = require('./signing/unencrypted_file_system_keystore');
 const dev = require('./dev');
 
-module.exports = { Near, NearClient, Account, SimpleKeyStoreSigner, InMemoryKeyStore, BrowserLocalStorageKeystore, UnencryptedFileSystemKeyStore, LocalNodeConnection, KeyPair, WalletAccount, dev };
+module.exports = { Near, NearClient, Account, SimpleKeyStoreSigner, InMemoryKeyStore, BrowserLocalStorageKeystore, LocalNodeConnection, KeyPair, WalletAccount, dev };
 
 

package.json

 {
   "name": "nearlib",
   "description": "Javascript library to interact with near blockchain",
-  "version": "0.5.0",
+  "version": "0.5.1",
   "repository": {
@@ -11,2 +11,3 @@ "type": "git",
   "main": "index.js",
+  "browser": "browser.js",
   "dependencies": {
@@ -13,0 +14,0 @@ "bs58": "^4.0.1",

Fixed alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Number of package files

30

increased by3.45%

Number of low supply chain risk alerts

9

decreased by-30.77%

Number of medium supply chain risk alerts

15

decreased by-6.25%

Worsened metrics

Total package byte prevSize

752136

decreased by-3.42%

Lines of code

15654

decreased by-3.73%

No dependency changes