nyc - npm Package Compare versions

Comparing version 1.1.8 to 1.1.9

package.json

 {
   "name": "nyc",
-  "version": "1.1.8",
+  "version": "1.1.9",
   "description": "forking code-coverage using istanbul.",
@@ -34,4 +34,8 @@ "main": "index.js",
     "strip-bom": "^1.0.0",
-    "yargs": "^3.8.0"
+    "yargs": "^3.8.0",
+    "spawn-wrap": "0.0.0"
   },
+  "bundledDependencies": [
+    "spawn-wrap"
+  ],
   "devDependencies": {
@@ -38,0 +42,0 @@ "chai": "^2.3.0",

New alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 6 instances in 1 package

Mixed license

License

(Experimental) Package contains multiple licenses.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

36948

increased by259.66%

Number of package files

32

increased by190.91%

Lines of code

620

increased by176.79%

Worsened metrics

Dependency count

7

increased by16.67%

Number of low license alerts

1

increased byInfinity%

Number of low supply chain risk alerts

33

increased by175%

Number of medium supply chain risk alerts

4

increased by300%

Dependency changes

• + Addedspawn-wrap@0.0.0