npm-groovy-lint - npm Package Compare versions

Comparing version 14.3.0 to 14.4.0

lib/groovy-lint.js

@@ -15,3 +15,2 @@ // Imports
 const { computeStats, processOutput } = require("./output.js");
-const { recordAnonymousEvent } = require("./analytics.js");
 const { getNpmGroovyLintVersion, getSourceLines, isErrorInLogLevelScope } = require("./utils");
@@ -340,21 +339,2 @@
 
-        // Manage anonymous usage stats (except if current lint has been cancelled by a duplicate call)
-        if (this.startElapse && this.options.insight === true && this.status !== 9) {
-            const elapsedTimeMs = parseInt(performance.now() - this.startElapse);
-            const callerKey = this.origin === "index" ? "cli" : "module";
-            const actionKey = this.options.format ? "format" : this.options.fix ? "fix" : "lint";
-            const data = {
-                status: this.status,
-                fileList: this.fileList,
-                result: this.lintResult,
-                elapsed: elapsedTimeMs,
-                options: this.options,
-                error: this.error
-            };
-            const eventSentPromise = recordAnonymousEvent(callerKey + "-" + actionKey, data);
-            if (callerKey === "cli") {
-                await eventSentPromise;
-            }
-        }
-
         await this.manageDeleteTmpFiles();
@@ -361,0 +341,0 @@

package.json

 {
   "name": "npm-groovy-lint",
-  "version": "14.3.0",
+  "version": "14.4.0",
   "description": "Lint, format and auto-fix your Groovy / Jenkinsfile / Gradle files",
@@ -49,3 +49,2 @@ "main": "index.js",
   "dependencies": {
-    "amplitude": "^6.0.0",
     "ansi-colors": "^4.1.1",
@@ -52,0 +51,0 @@ "axios": "^1.6.2",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 5 instances in 1 package

Improved metrics

Dependency count

18

decreased by-5.26%

Number of low supply chain risk alerts

16

decreased by-30.43%

Worsened metrics

Total package byte prevSize

19318922

decreased by-0.08%

Number of package files

128

decreased by-0.78%

Lines of code

7165

decreased by-4.71%

Dependency changes

• - Removedamplitude@^6.0.0

• - Removedamplitude@6.0.0(transitive)

• - Removedaxios@0.26.1(transitive)