publib - npm Package Compare versions
+4
-4
@@ -56,3 +56,3 @@ { | ||
| "devDependencies": { | ||
| "@aws-sdk/client-sts": "^3.1010.0", | ||
| "@aws-sdk/client-sts": "^3.1015.0", | ||
| "@stylistic/eslint-plugin": "^2", | ||
@@ -79,4 +79,4 @@ "@types/glob": "^8.1.0", | ||
| "dependencies": { | ||
| "@aws-sdk/client-codeartifact": "^3.1014.0", | ||
| "@aws-sdk/credential-providers": "^3.1014.0", | ||
| "@aws-sdk/client-codeartifact": "^3.1019.0", | ||
| "@aws-sdk/credential-providers": "^3.1019.0", | ||
| "@aws-sdk/types": "^3.973.6", | ||
@@ -97,3 +97,3 @@ "@types/fs-extra": "^8.0.0", | ||
| }, | ||
| "version": "0.2.1038", | ||
| "version": "0.2.1039", | ||
| "jest": { | ||
@@ -100,0 +100,0 @@ "coverageProvider": "v8", |
New alerts
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 25 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 25 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package