vhost - npm Package Compare versions

Comparing version 0.0.2 to 1.0.0

package.json

 {
   "name": "vhost",
-  "description": "'connect's \"vhost\" middleware, modified to accept a generic handler function. Works well with \"stack\", \"connect\", and \"http\" servers.",
-  "tags": [
-    "vhost",
-    "connect",
-    "stack",
-    "http",
-    "server"
-  ],
-  "version": "0.0.2",
+  "description": "virtual domain hosting",
+  "version": "1.0.0",
+  "author": {
+    "name": "Jonathan Ong",
+    "email": "me@jongleberry.com",
+    "url": "http://jongleberry.com",
+    "twitter": "https://twitter.com/jongleberry"
+  },
+  "license": "MIT",
   "repository": {
     "type": "git",
-    "url": "git://gist.github.com/820042.git"
+    "url": "https://github.com/expressjs/vhost.git"
   },
-  "homepage": "https://gist.github.com/820042",
-  "author": "Nathan Rajlich <nathan@tootallnate.net>",
-  "main": "./vhost.js",
-  "engines": {
-    "node": "*"
+  "bugs": {
+    "mail": "me@jongleberry.com",
+    "url": "https://github.com/expressjs/vhost/issues"
   },
-  "directories": {},
-  "files": [
-    ""
-  ]
+  "devDependencies": {
+    "mocha": "^1.17.0",
+    "should": "^3.0.0",
+    "supertest": "*",
+    "connect": "*"
+  },
+  "scripts": {
+    "test": "make test"
+  }
 }

New alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

spdx disjunction for an artifact's license information

License

spdx disjunction for an artifact's license information

Found 1 instance in 1 package

No website

Quality

Package does not have a website.

Found 1 instance in 1 package

Fixed alerts

Non-existent author

Supply chain risk

The package was published by an npm account that no longer exists.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

spdx disjunction for an artifact's license information

License

spdx disjunction for an artifact's license information

Found 1 instance in 1 package

No bug tracker

Maintenance

Package does not have a linked bug tracker in package.json.

Found 1 instance in 1 package

No License Found

License

(Experimental) License information could not be found

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

3314

increased by82.49%

Number of package files

6

increased by100%

Number of low license alerts

1

decreased by-50%

Lines of code

37

increased by12.12%

Number of low maintenance alerts

1

decreased by-50%

Number of medium quality alerts

0

decreased by-100%

Number of lines in readme file

41

increased byInfinity%

Number of high supply chain risk alerts

0

decreased by-100%

Worsened metrics

Dev dependency count

4

increased byInfinity%

No dependency changes