registry-auth-token
Advanced tools
Comparing version 3.1.1 to 3.1.2
@@ -18,3 +18,3 @@ var url = require('url') | ||
while (pathname !== '/') { | ||
while (pathname !== '/' && parsed.pathname !== pathname) { | ||
pathname = parsed.pathname || '/' | ||
@@ -21,0 +21,0 @@ |
{ | ||
"name": "registry-auth-token", | ||
"version": "3.1.1", | ||
"version": "3.1.2", | ||
"description": "Get the auth token set for an npm registry (if any)", | ||
@@ -5,0 +5,0 @@ "main": "index.js", |
@@ -150,2 +150,3 @@ var fs = require('fs') | ||
assert.deepEqual(getAuthToken('http://registry.blah.eu/what/ever', opts), {token: 'yep', type: 'Bearer'}) | ||
assert.deepEqual(getAuthToken('http://registry.blah.eu//what/ever', opts), undefined, 'does not hang') | ||
assert.equal(getAuthToken('//some.registry', opts), undef) | ||
@@ -152,0 +153,0 @@ done() |
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
23190
452
12