node-gyp-build
Advanced tools
Comparing version 3.5.0 to 3.5.1
@@ -5,2 +5,5 @@ var fs = require('fs') | ||
// Workaround to fix webpack's build warnings: 'the request of a dependency is an expression' | ||
var runtimeRequire = typeof __webpack_require__ === 'function' ? __non_webpack_require__ : require | ||
var abi = process.versions.modules // TODO: support old node where this is undef | ||
@@ -14,3 +17,3 @@ var runtime = isElectron() ? 'electron' : 'node' | ||
function load (dir) { | ||
return require(load.path(dir)) | ||
return runtimeRequire(load.path(dir)) | ||
} | ||
@@ -22,3 +25,3 @@ | ||
try { | ||
var name = require(path.join(dir, 'package.json')).name.toUpperCase().replace(/-/g, '_') | ||
var name = runtimeRequire(path.join(dir, 'package.json')).name.toUpperCase().replace(/-/g, '_') | ||
if (process.env[name + '_PREBUILD']) dir = process.env[name + '_PREBUILD'] | ||
@@ -25,0 +28,0 @@ } catch (err) {} |
{ | ||
"name": "node-gyp-build", | ||
"version": "3.5.0", | ||
"version": "3.5.1", | ||
"description": "Build tool and bindings loader for node-gyp that supports prebuilds", | ||
@@ -5,0 +5,0 @@ "main": "index.js", |
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
6811
110
11
1