read-config-file
Advanced tools
read-config-file - npm Package Compare versions
Comparing version 6.2.0 to 6.3.0
| { | ||
| "name": "read-config-file", | ||
| "version": "6.2.0", | ||
| "version": "6.3.0", | ||
| "main": "out/main.js", | ||
@@ -16,7 +16,4 @@ "author": "Vladimir Krivosheev", | ||
| ], | ||
| "scripts": { | ||
| "compile": "tsc", | ||
| "release": "pnpm compile && pnpm publish --no-git-checks" | ||
| }, | ||
| "dependencies": { | ||
| "config-file-ts": "^0.2.4", | ||
| "dotenv": "^9.0.2", | ||
@@ -33,3 +30,7 @@ "dotenv-expand": "^5.1.0", | ||
| }, | ||
| "typings": "./out/main.d.ts" | ||
| } | ||
| "typings": "./out/main.d.ts", | ||
| "scripts": { | ||
| "compile": "tsc", | ||
| "release": "pnpm compile && pnpm publish --no-git-checks" | ||
| } | ||
| } |
@@ -11,1 +11,2 @@ ## read-config-file | ||
| * toml (if installed, `yarn add toml`). | ||
| * ts |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Number of lines in readme file
- increased by9.09%
12
- Number of low supply chain risk alerts
- decreased by-83.33%
1
Worsened metrics
- Total package byte prevSize
- decreased by-89.22%
2031
- Dependency count
- increased by20%
6
- Number of package files
- decreased by-66.67%
3
- Lines of code
- decreased by-100%
0
- Number of medium supply chain risk alerts
- increased byInfinity%
1
Dependency changes
+ Addedconfig-file-ts@^0.2.4
+ Added@isaacs/cliui@8.0.2(transitive)
+ Added@pkgjs/parseargs@0.11.0(transitive)
+ Addedansi-regex@5.0.16.1.0(transitive)
+ Addedansi-styles@4.3.06.2.1(transitive)
+ Addedbalanced-match@1.0.2(transitive)
+ Addedbrace-expansion@2.0.1(transitive)
+ Addedcolor-convert@2.0.1(transitive)
+ Addedcolor-name@1.1.4(transitive)
+ Addedconfig-file-ts@0.2.6(transitive)
+ Addedcross-spawn@7.0.5(transitive)
+ Addedeastasianwidth@0.2.0(transitive)
+ Addedemoji-regex@8.0.09.2.2(transitive)
+ Addedforeground-child@3.3.0(transitive)
+ Addedglob@10.4.5(transitive)
+ Addedis-fullwidth-code-point@3.0.0(transitive)
+ Addedisexe@2.0.0(transitive)
+ Addedjackspeak@3.4.3(transitive)
+ Addedlru-cache@10.4.3(transitive)
+ Addedminimatch@9.0.5(transitive)
+ Addedminipass@7.1.2(transitive)
+ Addedpackage-json-from-dist@1.0.1(transitive)
+ Addedpath-key@3.1.1(transitive)
+ Addedpath-scurry@1.11.1(transitive)
+ Addedshebang-command@2.0.0(transitive)
+ Addedshebang-regex@3.0.0(transitive)
+ Addedsignal-exit@4.1.0(transitive)
+ Addedstring-width@4.2.35.1.2(transitive)
+ Addedstrip-ansi@6.0.17.1.0(transitive)
+ Addedtypescript@5.6.3(transitive)
+ Addedwhich@2.0.2(transitive)
+ Addedwrap-ansi@7.0.08.1.0(transitive)