node-gyp - npm Package Compare versions
Comparing version 0.5.3 to 0.5.4
@@ -50,3 +50,3 @@ | ||
| log.verbose('could not find "' + python + '". guessing location') | ||
| var rootDir = process.env.HOMEDRIVE || process.env.SystemDrive || 'C:\\' | ||
| var rootDir = process.env.SystemDrive || 'C:\\' | ||
| if (rootDir[rootDir.length - 1] !== '\\') { | ||
@@ -53,0 +53,0 @@ rootDir += '\\' |
| { "name": "node-gyp" | ||
| , "description": "Node.js native addon build tool" | ||
| , "keywords": [ "native", "addon", "module", "c", "c++", "bindings", "gyp" ] | ||
| , "version": "0.5.3" | ||
| , "version": "0.5.4" | ||
| , "installVersion": 9 | ||
@@ -6,0 +6,0 @@ , "author": "Nathan Rajlich <nathan@tootallnate.net> (http://tootallnate.net)" |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Non-existent author
Supply chain riskThe package was published by an npm account that no longer exists.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-5%
19
Worsened metrics
- Total package byte prevSize
915473
- Number of high supply chain risk alerts
- increased byInfinity%
1