poi-plugin-akashic-records - npm Package Compare versions

Comparing version 2.1.1-beta.1 to 2.1.1-beta.5

package.json

 {
   "name": "poi-plugin-akashic-records",
-  "version": "2.1.1-beta.1",
+  "version": "2.1.1-beta.5",
   "description": "logbook plugin for poi",
   "main": "index.js",
   "scripts": {
+    "win-publish": "cjsx -cb . && del /s \"*.cjsx\" && npm publish",
+    "win-prerelease": "cjsx -cb . && del /s \"*.cjsx\" && npm publish --tag beta",
+    "win-build": "cjsx -cb . && del /s \"*.cjsx\"",
+    "reset": "git checkout . && git clean -f",
+    "compile": "cjsx -cb .",
     "test": "echo \"Error: no test specified\" && exit 1"
@@ -8,0 +13,0 @@ },

New alerts

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

2513384

increased by1.57%

Number of package files

43

increased by2.38%

Lines of code

58832

increased by8.4%

Worsened metrics

Number of low supply chain risk alerts

30

increased by1400%

No dependency changes