Comparing version 0.0.4 to 0.0.5
@@ -30,5 +30,12 @@ | ||
if (err) return callback(err) | ||
if (!_version) return callback(new Error('No dev files installed. Run `node-gyp use x.x` where "x.x" is a node version like "0.7"')) | ||
version = _version | ||
next() | ||
if (_version) { | ||
gyp.verbose('using "current" installed dev files. version', _version) | ||
version = _version | ||
next() | ||
} else { | ||
version = parseFloat(process.versions.node) | ||
gyp.verbose('no dev files installed, falling back to host node version', version) | ||
gyp.opts.ensure = true | ||
gyp.commands.install([ version ], next) | ||
} | ||
}) | ||
@@ -35,0 +42,0 @@ } |
{ "name": "node-gyp" | ||
, "description": "Node.js native addon build tool" | ||
, "keywords": [ "native", "addon", "module", "c", "c++", "bindings", "gyp" ] | ||
, "version": "0.0.4" | ||
, "version": "0.0.5" | ||
, "author": "Nathan Rajlich <nathan@tootallnate.net> (http://tootallnate.net)" | ||
@@ -21,3 +21,14 @@ , "repository": { "type": "git", "url": "git://github.com/TooTallNate/node-gyp.git" } | ||
} | ||
, "bundleDependencies": [ | ||
"ansi" | ||
, "glob" | ||
, "minimatch" | ||
, "mkdirp" | ||
, "nopt" | ||
, "request" | ||
, "rimraf" | ||
, "tar" | ||
, "which" | ||
] | ||
, "engines": { "node": ">= 0.6.0" } | ||
} |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 4 instances in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 4 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
Mixed license
License(Experimental) Package contains multiple licenses.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
No License Found
License(Experimental) License information could not be found.
Found 1 instance in 1 package
466879
136
10048
59
14