next-auth
Advanced tools
next-auth - npm Package Compare versions
Comparing version 1.0.0 to 1.1.0
| { | ||
| "name": "next-auth", | ||
| "version": "1.0.0", | ||
| "version": "1.1.0", | ||
| "description": "Add oAuth and/or email authentication to Next.js sites", | ||
| "main": "index.js", | ||
| "scripts": { | ||
| "test": "echo \"Error: no test specified\" && exit 1" | ||
| "scripts": {}, | ||
| "author": "", | ||
| "license": "ISC", | ||
| "dependencies": { | ||
| "cookie-parser": "^1.4.3", | ||
| "express": "^4.16.2", | ||
| "express-session": "^1.15.6", | ||
| "lusca": "^1.5.2", | ||
| "nodemailer": "^4.4.2", | ||
| "nodemailer-direct-transport": "^3.3.2", | ||
| "passport": "^0.4.0", | ||
| "uuid": "^3.2.1" | ||
| }, | ||
| "author": "", | ||
| "license": "ISC" | ||
| "devDependencies": { | ||
| "next": "^4.2.3", | ||
| "next-auth-client": "^1.0.0", | ||
| "react": "^16.2.0", | ||
| "react-dom": "^16.2.0" | ||
| } | ||
| } |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 2 instances in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 16 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
No README
QualityPackage does not have a README. This may indicate a failed publish or a low quality package.
Found 1 instance in 1 package
No tests
QualityPackage does not have any tests. This is a strong signal of a poorly maintained or low quality package.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by3211873.75%
8319012
- Number of package files
- increased by3100%
32
- Lines of code
- increased byInfinity%
98384
- Number of low quality alerts
- decreased by-50%
1
- Number of medium quality alerts
- decreased by-100%
0
- Number of lines in readme file
- increased byInfinity%
8
Worsened metrics
- Dependency count
- increased byInfinity%
8
- Dev dependency count
- increased byInfinity%
4
- Number of low supply chain risk alerts
- increased by4400%
45
- Number of medium supply chain risk alerts
- increased by4200%
43
Dependency changes
+ Addedcookie-parser@^1.4.3
+ Addedexpress@^4.16.2
+ Addedexpress-session@^1.15.6
+ Addedlusca@^1.5.2
+ Addednodemailer@^4.4.2
+ Addedpassport@^0.4.0
+ Addeduuid@^3.2.1
+ Addedaccepts@1.3.8(transitive)
+ Addedarray-flatten@1.1.1(transitive)
+ Addedbody-parser@1.20.3(transitive)
+ Addedbytes@3.1.2(transitive)
+ Addedcall-bind@1.0.7(transitive)
+ Addedcontent-disposition@0.5.4(transitive)
+ Addedcontent-type@1.0.5(transitive)
+ Addedcookie@0.7.10.7.2(transitive)
+ Addedcookie-parser@1.4.7(transitive)
+ Addedcookie-signature@1.0.61.0.7(transitive)
+ Addeddebug@2.6.9(transitive)
+ Addeddefine-data-property@1.1.4(transitive)
+ Addeddepd@2.0.0(transitive)
+ Addeddestroy@1.2.0(transitive)
+ Addedee-first@1.1.1(transitive)
+ Addedencodeurl@1.0.22.0.0(transitive)
+ Addedes-define-property@1.0.0(transitive)
+ Addedes-errors@1.3.0(transitive)
+ Addedescape-html@1.0.3(transitive)
+ Addedetag@1.8.1(transitive)
+ Addedexpress@4.21.1(transitive)
+ Addedexpress-session@1.18.1(transitive)
+ Addedfinalhandler@1.3.1(transitive)
+ Addedforwarded@0.2.0(transitive)
+ Addedfresh@0.5.2(transitive)
+ Addedfunction-bind@1.1.2(transitive)
+ Addedget-intrinsic@1.2.4(transitive)
+ Addedgopd@1.0.1(transitive)
+ Addedhas-property-descriptors@1.0.2(transitive)
+ Addedhas-proto@1.0.3(transitive)
+ Addedhas-symbols@1.0.3(transitive)
+ Addedhasown@2.0.2(transitive)
+ Addedhttp-errors@2.0.0(transitive)
+ Addedhttpntlm@1.6.1(transitive)
+ Addedhttpreq@1.1.1(transitive)
+ Addediconv-lite@0.4.24(transitive)
+ Addedinherits@2.0.4(transitive)
+ Addedipaddr.js@1.9.1(transitive)
+ Addedlusca@1.7.0(transitive)
+ Addedmedia-typer@0.3.0(transitive)
+ Addedmerge-descriptors@1.0.3(transitive)
+ Addedmethods@1.1.2(transitive)
+ Addedmime@1.6.0(transitive)
+ Addedmime-db@1.52.0(transitive)
+ Addedmime-types@2.1.35(transitive)
+ Addedms@2.0.02.1.3(transitive)
+ Addednegotiator@0.6.3(transitive)
+ Addednodemailer@4.7.0(transitive)
+ Addednodemailer-direct-transport@3.3.2(transitive)
+ Addednodemailer-fetch@1.6.0(transitive)
+ Addednodemailer-shared@1.1.0(transitive)
+ Addedobject-inspect@1.13.3(transitive)
+ Addedon-finished@2.4.1(transitive)
+ Addedon-headers@1.0.2(transitive)
+ Addedparseurl@1.3.3(transitive)
+ Addedpassport@0.4.1(transitive)
+ Addedpassport-strategy@1.0.0(transitive)
+ Addedpath-to-regexp@0.1.10(transitive)
+ Addedpause@0.0.1(transitive)
+ Addedproxy-addr@2.0.7(transitive)
+ Addedqs@6.13.0(transitive)
+ Addedrandom-bytes@1.0.0(transitive)
+ Addedrange-parser@1.2.1(transitive)
+ Addedraw-body@2.5.2(transitive)
+ Addedsafe-buffer@5.2.1(transitive)
+ Addedsafer-buffer@2.1.2(transitive)
+ Addedsend@0.19.0(transitive)
+ Addedserve-static@1.16.2(transitive)
+ Addedset-function-length@1.2.2(transitive)
+ Addedsetprototypeof@1.2.0(transitive)
+ Addedside-channel@1.0.6(transitive)
+ Addedsmtp-connection@2.12.0(transitive)
+ Addedstatuses@2.0.1(transitive)
+ Addedtoidentifier@1.0.1(transitive)
+ Addedtsscmp@1.0.6(transitive)
+ Addedtype-is@1.6.18(transitive)
+ Addeduid-safe@2.1.5(transitive)
+ Addedunderscore@1.7.0(transitive)
+ Addedunpipe@1.0.0(transitive)
+ Addedutils-merge@1.0.1(transitive)
+ Addeduuid@3.4.0(transitive)
+ Addedvary@1.1.2(transitive)