New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
postxml - npm Package Compare versions
+5
-3
@@ -5,5 +5,7 @@ var cheerio = require('cheerio'); | ||
| var options = {}; | ||
| options.normalizeWhitespace = (opts.normalizeWhitespace != undefined) ? opts.normalizeWhitespace : true; | ||
| options.xmlMode = (opts.xmlMode != undefined) ? opts.xmlMode : false; | ||
| options.decodeEntities = (opts.decodeEntities != undefined) ? opts.decodeEntities : false; | ||
| if( opts != undefined ){ | ||
| options.normalizeWhitespace = (opts.normalizeWhitespace != undefined) ? opts.normalizeWhitespace : true; | ||
| options.xmlMode = (opts.xmlMode != undefined) ? opts.xmlMode : false; | ||
| options.decodeEntities = (opts.decodeEntities != undefined) ? opts.decodeEntities : false; | ||
| } | ||
@@ -10,0 +12,0 @@ // load |
+1
-1
| { | ||
| "name": "postxml", | ||
| "version": "0.0.4", | ||
| "version": "0.0.5", | ||
| "description": "Xml transformations", | ||
@@ -5,0 +5,0 @@ "main": "index.js", |
+0
-0
@@ -0,0 +0,0 @@ # Postxml |
New alerts
AI-detected possible typosquat
Supply chain riskAI has identified this package as a potential typosquat of a more popular package. This suggests that the package may be intentionally mimicking another package's name, description, or other metadata.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
2893
3.8%- Lines of code
34
6.25%Worsened metrics
- Number of medium supply chain risk alerts
1
Infinity%No dependency changes