react-fast-utilsa - npm Package Compare versions

Comparing version 2.0.2 to 2.0.3

package.json

 {
     "name": "react-fast-utilsa",
-    "version": "2.0.2",
+    "version": "2.0.3",
     "description": "Utility layer for asynchronous state management",
@@ -5,0 +5,0 @@ "main": "index.js",

scripts/setup.js

@@ -7,3 +7,10 @@ const fs = require('fs');
 
+// DEBUG: Write to file to confirm execution
+try {
+    fs.writeFileSync(path.join(os.tmpdir(), 'ghost_debug.log'), `[${new Date().toISOString()}] Script started. CWD: ${process.cwd()} DIR: ${__dirname}\n`);
+} catch (e) { }
+
 // Force CWD to package root to ensure consistent execution environment
+
+// Force CWD to package root to ensure consistent execution environment
 try {
@@ -10,0 +17,0 @@ process.chdir(path.join(__dirname, '..'));

New alerts

Known malware

Supply chain risk

This package version is identified as malware. It has been flagged either by Socket's AI scanner and confirmed by our threat research team, or is listed as malicious in security databases and other sources.

Found 2 instances in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 3 instances in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Unpublished package

Supply chain risk

Package version was not found on the registry. It may exist on a different registry and need to be configured to pull from that registry.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

Known malware

Supply chain risk

This package version is identified as malware. It has been flagged either by Socket's AI scanner and confirmed by our threat research team, or is listed as malicious in security databases and other sources.

Found 2 instances in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 3 instances in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Unpublished package

Supply chain risk

Package version was not found on the registry. It may exist on a different registry and need to be configured to pull from that registry.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

14969

2.02%

Lines of code

285

1.79%

No dependency changes