npm-scripts-versioning
Advanced tools
@@ -26,5 +26,4 @@ #!/usr/bin/env node | ||
| const fs = require('fs'); | ||
| const path = require('path'); | ||
| const process = require('process'); | ||
| const fs = require('fs'); | ||
| const path = require('path'); | ||
@@ -35,3 +34,3 @@ const { files, version } = require(path.join(process.cwd(), 'package.json')); | ||
| const filePaths = pkg.files.filter((filePath) => (filePath.startsWith("!") === false)); | ||
| const filePaths = files.filter((filePath) => (filePath.startsWith("!") === false)); | ||
@@ -38,0 +37,0 @@ filePaths.push('package.json'); |
@@ -26,5 +26,3 @@ #!/usr/bin/env node | ||
| const path = require('path'); | ||
| const process = require('process'); | ||
| const path = require('path'); | ||
| const { version } = require(path.join(process.cwd(), 'package.json')); | ||
@@ -31,0 +29,0 @@ |
@@ -28,3 +28,2 @@ #!/usr/bin/env node | ||
| const path = require('path'); | ||
| const process = require('process'); | ||
@@ -37,4 +36,5 @@ const { name, files, version } = require(path.join(process.cwd(), 'package.json')); | ||
| // eslint-disable-next-line max-len | ||
| // CREDIT: `semver-regex` NPM package (https://github.com/sindresorhus/semver-regex/blob/master/index.js) | ||
| const semverRegex = '\\bv?(?:0|[1-9]\\d*)\\\.(?:0|[1-9]\\d*)\\.(?:0|[1-9]\\d*)(?:-[\\da-z\\-]+(?:\\.[a-z\\d\\-]+)*)?(?:\\+[a-z\\d\\-]+(?:\\.[a-z\\d\\-]+)*)?\\b'; | ||
| const semverRegex = '\\bv?(?:0|[1-9]\\d*)\\.(?:0|[1-9]\\d*)\\.(?:0|[1-9]\\d*)(?:-[\\da-z\\-]+(?:\\.[a-z\\d\\-]+)*)?(?:\\+[a-z\\d\\-]+(?:\\.[a-z\\d\\-]+)*)?\\b'; | ||
@@ -41,0 +41,0 @@ |
+4
-2
| { | ||
| "name": "npm-scripts-versioning", | ||
| "version": "1.0.0-beta.3", | ||
| "version": "1.0.0-beta.4", | ||
| "description": "", | ||
@@ -46,2 +46,4 @@ "authors": [ | ||
| "bump:patch": "npm --no-git-tag-version version patch", | ||
| "postversion": "./lib/update-version-comment-refs.js && ./lib/push-changed-version-files.js", | ||
| "prepublishOnly": "npm run lint && git push && npx ./lib/tag-version.js", | ||
| "postpublish": "npm run bump" | ||
@@ -55,4 +57,4 @@ }, | ||
| "@bsara/eslint-config": "^2.1.5", | ||
| "eslint": "^3.19.0" | ||
| "eslint": "^4.3.0" | ||
| } | ||
| } |
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
9091
0.93%116
-1.69%