retrocord - npm Package Compare versions

Comparing version 1.1.6 to 1.1.7

package.json

 {
   "name": "retrocord",
-  "version": "1.1.6",
+  "version": "1.1.7",
   "description": "The best in life",
@@ -14,3 +14,3 @@ "main": "src/index.js",
     "ansi-256-colors": "^1.1.0",
-    "discord.js": "github:hydrabolt/discord.js#master",
+    "discord.js": "github:hydrabolt/discord.js",
     "inquirer": "^2.0.0",
@@ -17,0 +17,0 @@ "node-emoji": "^1.4.3",

src/commands/join.js

@@ -7,3 +7,3 @@ module.exports = (vorpal) => {
       if (text.startsWith('dm')) {
-        x.push(...discord.channels.filter(c => c.type === 'dm' || c.type === 'group').map(c => `#${(c.name ? c.name : c.recipient.username).toLowerCase()}`));
+        x.push(...discord.channels.filter(c => c.type === 'dm' || c.type === 'group').map(c => `@${(c.name ? c.name : c.recipient.username).toLowerCase()}`));
       } else {
@@ -16,3 +16,4 @@ x.push(...discord.channels.filter(c => c.type === 'text').map(c => `#${c.name.toLowerCase()}`));
       args = args['guild#channel'].join(' ');
-      let [guild, channel] = [args.split('#')[0].trim(), args.split('#')[1]];
+      const re = /@|#/;
+      let [guild, channel] = [args.split(re)[0].trim(), args.split(re)[1].trim()];
       if (guild !== 'dm') {
@@ -33,3 +34,2 @@ guild = guild ? discord.guilds.find(g => g.name.toLowerCase() === guild.toLowerCase()) :
       } else {
-        if (!args.includes('#')) return cb(chalk.bold('INVALID!'));
         channel = discord.channels.filter(c => c.type === 'dm').find(c => c.recipient.username.toLowerCase() === channel.toLowerCase().trim());
@@ -36,0 +36,0 @@ if (!channel) {

src/index.js

@@ -80,2 +80,4 @@ #!/usr/bin/env node
   }
+
+  if (message.author.id !== client.user.id) message.acknowledge();
 };
@@ -82,0 +84,0 @@

New alerts

GitHub dependency

Supply chain risk

Contains a dependency which resolves to a GitHub URL. Dependencies fetched from GitHub specifiers are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

GitHub dependency

Supply chain risk

Contains a dependency which resolves to a GitHub URL. Dependencies fetched from GitHub specifiers are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

300617

increased by0.01%

Lines of code

562

increased by0.18%

Worsened metrics

Number of medium supply chain risk alerts

8

increased by14.29%

Dependency changes

• Updateddiscord.js@github:hydrabolt/discord.js