parley - npm Package Compare versions

Comparing version 3.3.3 to 3.3.4

package.json

 {
   "name": "parley",
-  "version": "3.3.3",
+  "version": "3.3.4",
   "description": "Practical, lightweight flow control for Node.js.  Supports `await`, callbacks and promises.",
@@ -5,0 +5,0 @@ "main": "lib/parley.js",

test/baseline.benchmark.js

@@ -340,15 +340,15 @@ /**
         bench('mock "await find()"', [
-
-          async function (next){
-
-            var result;
-            try {
-              result = await find({ where: {id:3, x:30} });
-            } catch (err) {
-              return next(err);
-            }
-
-            return next();
-          }
-
+          eval(
+            '(()=>{\n'+
+            '  return async function (next){\n'+
+            '    var result;\n'+
+            '    try {\n'+
+            '      result = await find({ where: {id:3, x:30} });\n'+
+            '    } catch (err) {\n'+
+            '      return next(err);\n'+
+            '    }\n'+
+            '    return next();\n'+
+            '  }\n'+
+            '})()\n'
+          )
         ], done);
@@ -355,0 +355,0 @@ });

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

215787

increased by0.07%

Lines of code

3102

increased by0.13%

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

No dependency changes