node-sarif-builder
Advanced tools
node-sarif-builder - npm Package Compare versions
Comparing version 0.1.2-alpha202201100953.0 to 0.1.2-alpha202201100956.0
| { | ||
| "name": "node-sarif-builder", | ||
| "version": "0.1.2-alpha202201100953.0", | ||
| "version": "0.1.2-alpha202201100956.0", | ||
| "description": "Module to help building SARIF log files", | ||
@@ -25,3 +25,4 @@ "main": "dist/lib/index.js", | ||
| "cov:send": "run-s cov:lcov && codecov", | ||
| "cov:check": "nyc report && nyc check-coverage --lines 100 --functions 100 --branches 100" | ||
| "cov:check": "nyc report && nyc check-coverage --lines 100 --functions 100 --branches 100", | ||
| "prepublish": "tsc" | ||
| }, | ||
@@ -28,0 +29,0 @@ "engines": { |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by45.31%
54371
- Number of package files
- increased by133.33%
7
- Lines of code
- increased byInfinity%
467
- Number of medium supply chain risk alerts
- decreased by-50%
1
Worsened metrics
- Number of low supply chain risk alerts
- increased by200%
3