syntax-error
Advanced tools
Comparing version 1.1.0 to 1.1.1
@@ -7,6 +7,7 @@ var esprima = require('esprima-fb'); | ||
try { | ||
Function(src); | ||
eval('throw "STOP"; (function () { ' + src + '})()'); | ||
return; | ||
} | ||
catch (err) { | ||
if (err === 'STOP') return undefined; | ||
if (err.constructor.name !== 'SyntaxError') throw err; | ||
@@ -13,0 +14,0 @@ return errorInfo(src, file); |
{ | ||
"name": "syntax-error", | ||
"version": "1.1.0", | ||
"version": "1.1.1", | ||
"description": "detect and report syntax errors in source code strings", | ||
@@ -5,0 +5,0 @@ "main": "index.js", |
Uses eval
Supply chain riskPackage uses eval() which is a dangerous function. This prevents the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses eval() which is a dangerous function. This prevents the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
7152
15
122
5