Comparing version 1.0.1 to 1.0.2
{ | ||
"name": "this", | ||
"version": "1.0.1", | ||
"version": "1.0.2", | ||
"description": "Traverses up the directory tree and returns the first module found", | ||
@@ -5,0 +5,0 @@ "main": "src/index.js", |
import test from 'ava'; | ||
test(`importing doesn't throw`, t => { | ||
t.notThrows(() => require('../')); | ||
const cwd = process.cwd(); | ||
const pkgPath = require.resolve('../'); | ||
test.afterEach.always(() => { | ||
process.chdir(cwd); | ||
delete require.cache[pkgPath]; | ||
}); | ||
test.serial(`exports root module`, t => { | ||
process.chdir('test/helpers/package'); | ||
t.is(require(pkgPath), 'package'); | ||
}); | ||
test.serial(`exports undfined if there's no root module`, t => { | ||
process.chdir('/'); | ||
t.is(require(pkgPath), undefined); | ||
}); |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
5121
9
23
0
3