serverless-leo - npm Package Compare versions

Comparing version 1.4.2 to 1.4.3

index.js

@@ -161,3 +161,4 @@ 'use strict'
         this.serverless.cli.log(`Invoking local lambda ${functionKey} with data: ${JSON.stringify(event)}`)
-        return execSync(`serverless invoke local -f ${functionKey} -d ${JSON.stringify(JSON.stringify(event))}`, { stdio: 'inherit' })
+        const environmentSetString = Object.entries(process.env).filter(i => !/ /.test(i[1])).map(([key, value]) => ` -e ${key}="${value}"`).join('')
+        return execSync(`serverless invoke local -f ${functionKey} -d ${JSON.stringify(JSON.stringify(event))}${environmentSetString}`, { stdio: 'inherit' })
       }
@@ -164,0 +165,0 @@ }

lib/leo.js

@@ -16,4 +16,3 @@ 'use strict'
       Type: 'Custom::Install',
-      Properties: {},
-      LastUpdated: Date.now()
+      Properties: {}
     }
@@ -20,0 +19,0 @@

package.json

 {
   "name": "serverless-leo",
-  "version": "1.4.2",
+  "version": "1.4.3",
   "description": "Serverless plugin for leo microservices",
@@ -5,0 +5,0 @@ "main": "index.js",

New alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

58737

increased by0.24%

Worsened metrics

Number of low supply chain risk alerts

11

increased by10%

No dependency changes