New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
pruno-http
Advanced tools
pruno-http - npm Package Compare versions
Comparing version 1.0.2 to 2.0.0
19
index.js
| "use strict"; | ||
| var serverRunner = require('./utils/server-runner'); | ||
| var path = require('path'); | ||
| var supervisor = require('supervisor'); | ||
| var livereload = require('tiny-lr')(); | ||
@@ -14,2 +15,3 @@ function HttpTask (params) { | ||
| return { | ||
| lrPort: 35729, | ||
| listen: 3000, | ||
@@ -23,8 +25,13 @@ env: 'development', | ||
| return function() { | ||
| if (! params.file) { | ||
| params.file = path.join(__dirname, './utils/server.js'); | ||
| } | ||
| var simpleServer = path.join(__dirname, './utils/server.js'); | ||
| var server = params.file || simpleServer; | ||
| serverRunner.run(params); | ||
| return gulp.watch(params.dist + '/**/*', serverRunner.notify); | ||
| livereload.listen(params.lrPort); | ||
| gulp.watch([params.dist + '/**/*'], function(event) { | ||
| var fileName = path.relative(__dirname, event.path); | ||
| livereload.changed({body: { files: [fileName] }}); | ||
| }); | ||
| supervisor.run(['--harmony', '-i build/', '-e js', server]); | ||
| }; | ||
@@ -31,0 +38,0 @@ }; |
| { | ||
| "name": "pruno-http", | ||
| "version": "1.0.2", | ||
| "version": "2.0.0", | ||
| "description": "A simple HTTP server for pruno. Especially useful for prototyping or building static sites.", | ||
@@ -30,4 +30,5 @@ "main": "index.js", | ||
| "serve-static": "^1.8.1", | ||
| "supervisor": "^0.6.0", | ||
| "tiny-lr": "^0.1.5" | ||
| } | ||
| } |
Fixed alerts
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-66.67%
1
- Number of medium supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Total package byte prevSize
- decreased by-43.51%
2538
- Dependency count
- increased by20%
6
- Number of package files
- decreased by-16.67%
5
- Lines of code
- decreased by-60%
40
Dependency changes
+ Addedsupervisor@^0.6.0
+ Addedobject-inspect@1.13.4(transitive)
+ Addedsupervisor@0.6.0(transitive)
- Removedobject-inspect@1.13.3(transitive)