New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
undefine - npm Package Compare versions
Comparing version 0.2.11 to 0.2.12
| { | ||
| "name": "undefine", | ||
| "version": "0.2.11", | ||
| "version": "0.2.12", | ||
| "description": "Universal Module Loader, for node.js, browser scripts, bundles, and AMD define loaders", | ||
@@ -10,17 +10,17 @@ "main": "undefine.js", | ||
| "files": [ | ||
| "dist", | ||
| "node_modules_self_reference.js" | ||
| "dist" | ||
| ], | ||
| "dependencies": {}, | ||
| "dependencies": { | ||
| "allow-require-me": "^1.0.0" | ||
| }, | ||
| "devDependencies": { | ||
| "uglify-js": "2.x", | ||
| "curl-amd": "0.8.x", | ||
| "requirejs": "2.x", | ||
| "curl-amd": "0.8.x" | ||
| "uglify-js": "2.x" | ||
| }, | ||
| "scripts": { | ||
| "preinstall": "node node_modules_self_reference.js remove", | ||
| "postinstall": "node node_modules_self_reference.js add", | ||
| "test": "node test/for_node", | ||
| "build": "cd dist && sh ../node_modules/.bin/uglifyjs --compress --mangle --output undefine-min.js --source-map undefine-min.map -- ../undefine.js", | ||
| "stats": "cd dist && cat undefine-min.js | gzip > undefine-min.js.gz && cat ../undefine.js | gzip > undefine.js.gz && cat undefine-min.map | gzip > undefine-min.map.gz && wc ../undefine.js * | grep -v total && rm *.gz" | ||
| "stats": "cd dist && cat undefine-min.js | gzip > undefine-min.js.gz && cat ../undefine.js | gzip > undefine.js.gz && cat undefine-min.map | gzip > undefine-min.map.gz && wc ../undefine.js * | grep -v total && rm *.gz", | ||
| "postinstall": "node node_modules\\allow-require-me\\allow-require-me.js add" | ||
| }, | ||
@@ -27,0 +27,0 @@ "repository": { |
New alerts
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 1 instance in 1 package
Fixed alerts
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 2 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Number of high supply chain risk alerts
- decreased by-50%
1
- Number of low supply chain risk alerts
- decreased by-33.33%
2
Worsened metrics
- Total package byte prevSize
- decreased by-20.89%
20477
- Dependency count
- increased byInfinity%
1
- Number of package files
- decreased by-14.29%
6
- Lines of code
- decreased by-40.62%
171
Dependency changes
+ Addedallow-require-me@^1.0.0
+ Addedallow-require-me@1.0.0(transitive)