New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
sreya - npm Package Compare versions
Comparing version 1.0.0 to 1.1.0
| { | ||
| "name": "sreya", | ||
| "version": "1.0.0", | ||
| "version": "1.1.0", | ||
| "description": "Sreya is a versatile in-memory database for Node.js applications.", | ||
@@ -13,3 +13,3 @@ "main": "dist/index.js", | ||
| "build": "tsc", | ||
| "test": "nodemon test/test.js" | ||
| "test": "node test/test.js" | ||
| }, | ||
@@ -34,4 +34,10 @@ "repository": { | ||
| "dependencies": { | ||
| "dotenv": "^16.4.5", | ||
| "fs": "^0.0.1-security", | ||
| "nodemon": "^3.1.0" | ||
| }, | ||
| "devDependencies": { | ||
| "@types/node": "^20.12.7", | ||
| "typescript": "^5.4.5" | ||
| } | ||
| } | ||
| } |
New alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by1080.85%
20098
- Number of package files
- increased by250%
14
- Lines of code
- increased by1610%
342
Worsened metrics
- Dependency count
- increased by200%
3
- Dev dependency count
- increased byInfinity%
2
- Number of low supply chain risk alerts
- increased byInfinity%
6
- Number of medium supply chain risk alerts
- increased byInfinity%
1
Dependency changes
+ Addeddotenv@^16.4.5
+ Addedfs@^0.0.1-security
+ Addeddotenv@16.4.7(transitive)
+ Addedfs@0.0.1-security(transitive)