prime-util - npm Package Compare versions

Comparing version 0.0.1 to 0.0.2

package.json

 {
   "name": "prime-util",
-  "version": "0.0.1",
+  "version": "0.0.2",
   "description": "Extra Utilities using Prime",
   "main": "index.js",
   "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1"
+    "test": "make test"
   },
-  "repository": "",
   "author": "Arian Stolwijk",
+  "repository": {
+    "type": "git",
+    "url": "git://github.com/arian/prime-util.git"
+  },
   "license": "MIT",
@@ -12,0 +15,0 @@ "dependencies": {

types/object.js

 /*
 object methods
-*/"use strict"
+*/"use strict";
 
@@ -5,0 +5,0 @@ var shell = require("prime/util/shell")

New alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

Non-existent author

Supply chain risk

The package was published by an npm account that no longer exists.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No tests

Quality

Package does not have any tests. This is a strong signal of a poorly maintained or low quality package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

5358

increased by244.34%

Number of package files

12

increased by140%

Lines of code

128

increased by300%

Number of low quality alerts

2

decreased by-33.33%

Number of lines in readme file

42

increased by4100%

Number of high supply chain risk alerts

0

decreased by-100%

Number of low supply chain risk alerts

0

decreased by-100%

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

No dependency changes