newify
Advanced tools
Comparing version 1.1.3 to 1.1.6
{ | ||
"name": "newify", | ||
"version": "1.1.3", | ||
"description": "Call function constructors with an array of arguments", | ||
"version": "1.1.6", | ||
"description": "Call function constructors with an array of arguments that spread", | ||
"main": "index.js", | ||
@@ -31,2 +31,3 @@ "scripts": { | ||
"devDependencies": { | ||
"tape": "~2.4.0", | ||
"should": "~4.0.4", | ||
@@ -33,0 +34,0 @@ "mocha": "~1.20.1" |
Uses eval
Supply chain riskPackage uses eval() which is a dangerous function. This prevents the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
4859
8
77
3
2
1