orm - npm Package Compare versions
Comparing version 0.1.8 to 2.0.0-alpha1
| { | ||
| "name" : "orm", | ||
| "version" : "0.1.8", | ||
| "description" : "NodeJS Object-relational mapping", | ||
| "keywords" : [ | ||
| "orm", | ||
| "mysql", | ||
| "postgresql", | ||
| "mongodb", | ||
| "database", | ||
| "relational" | ||
| ], | ||
| "author" : "Diogo Resende <dresende@thinkdigital.pt>", | ||
| "contributors": [ | ||
| { "name": "Michael Axiak", "email": "mike@axiak.net" }, | ||
| { "name": "booo" }, | ||
| { "name": "shaneiseminger" } | ||
| ], | ||
| "engines" : { | ||
| "node" : ">= 0.4.0" | ||
| }, | ||
| "repository" : { | ||
| "type" : "git", | ||
| "url" : "http://github.com/dresende/node-orm.git" | ||
| }, | ||
| "directories": { | ||
| "lib" : "./lib", | ||
| "example": "./examples" | ||
| }, | ||
| "main" : "./lib/orm", | ||
| "licenses" : [{ | ||
| "type" : "MIT", | ||
| "url" : "http://github.com/dresende/node-orm/raw/master/LICENSE" | ||
| }] | ||
| "author": "Diogo Resende <dresende@thinkdigital.pt>", | ||
| "name": "orm", | ||
| "description": "NodeJS Object-relational mapping", | ||
| "version": "2.0.0-alpha1", | ||
| "repository": { | ||
| "url": "" | ||
| }, | ||
| "main": "./lib/ORM", | ||
| "scripts": { | ||
| "test": "make test" | ||
| }, | ||
| "engines": { | ||
| "node": "*" | ||
| }, | ||
| "devDependencies": { | ||
| "utest": "0.0.6", | ||
| "urun": "0.0.6", | ||
| "mysql": "2.0.0-alpha4", | ||
| "pg": "0.8.7" | ||
| }, | ||
| "optionalDependencies": {} | ||
| } |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 3 instances in 1 package
No repository
Supply chain riskPackage does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Improved metrics
- Number of package files
- increased by110%
42
Worsened metrics
- Total package byte prevSize
- decreased by-20.87%
52399
- Dev dependency count
- increased byInfinity%
4
- Lines of code
- decreased by-11.66%
1780
- Number of lines in readme file
- decreased by-96.14%
8
- Number of low supply chain risk alerts
- increased by11.11%
10
- Number of medium supply chain risk alerts
- increased byInfinity%
1