wraplog - npm Package Compare versions

Comparing version 0.0.1 to 0.0.2

index.js

@@ -8,5 +8,5 @@ const winston = require('winston');
 
-	    if (opts.syslog === undefined && (opts.ci !== undefined || process.env.CIRCLECI || process.env.CI || process.env.JENKINS)) {
+	    if (opts.ci !== undefined) {
 		logTransports.push(new winston.transports.File({ filename: './logs/' + role + '.log' }));
-	    } else if (opts.syslog === undefined && (opts.debug !== undefined || process.env.DEBUG)) {
+	    } else if (opts.debug !== undefined || process.env.DEBUG) {
 		logTransports.push(new winston.transports.Console({ colorize: true }));
@@ -35,5 +35,11 @@ } else {
 		require('winston-syslog').Syslog;
-		logTransports.push(new winston.transports.Syslog(syslogOptions));
+		let prepTransport = new winston.transports.Syslog(syslogOptions);
+		prepTransport.handleExceptions = (e) => { console.error('logger caught error:', JSON.stringify(e)); };
+		logTransports.push(prepTransport);
 	    }
-	    this._logger = new winston.Logger({ transports: logTransports });
+	    try {
+		this._logger = new winston.createLogger({ transports: logTransports });
+	    } catch(e) {
+		console.error('caught error initializing logger:', JSON.stringify(e));
+	    }
 	}
@@ -40,0 +46,0 @@

package.json

 {
   "name": "wraplog",
   "license": "BSD-3-Clause",
-  "version": "0.0.1",
+  "version": "0.0.2",
   "dependencies": {
-    "winston": "^2.4.0",
-    "winston-syslog": "^1.2.6"
+    "winston": "^3.0.0-rc1",
+    "winston-syslog": "^2.0.0"
   },
+  "devDependencies": {
+    "mocha": "4.1.0"
+  },
   "description": "logging library",
@@ -13,3 +16,7 @@ "engines": {
   },
-  "repository": "https://github.com/faust64/logger"
+  "repository": "https://github.com/faust64/logger",
+  "scripts": {
+    "release": "npm login && git push -u origin master && npm publish",
+    "test": "make test"
+  }
 }

New alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Fixed alerts

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Improved metrics

Total package byte prevSize

6970

increased by264.35%

Number of package files

9

increased by200%

Lines of code

76

increased by94.87%

Number of medium quality alerts

1

decreased by-50%

Number of lines in readme file

39

increased byInfinity%

Number of low supply chain risk alerts

9

decreased by-18.18%

Worsened metrics

Dev dependency count

1

increased byInfinity%

Dependency changes

• + Added@colors/colors@1.6.0(transitive)

• + Added@dabh/diagnostics@2.0.3(transitive)

• + Added@types/triple-beam@1.3.5(transitive)

• + Addedasync@3.2.6(transitive)

• + Addedbindings@1.5.0(transitive)

• + Addedcolor@3.2.1(transitive)

• + Addedcolor-convert@1.9.3(transitive)

• + Addedcolor-name@1.1.3(transitive)

• + Addedcolor-string@1.9.1(transitive)

• + Addedcolorspace@1.1.4(transitive)

• + Addedenabled@2.0.0(transitive)

• + Addedfecha@4.2.3(transitive)

• + Addedfile-uri-to-path@1.0.0(transitive)

• + Addedfn.name@1.1.0(transitive)

• + Addedinherits@2.0.4(transitive)

• + Addedis-arrayish@0.3.2(transitive)

• + Addedis-stream@2.0.1(transitive)

• + Addedkuler@2.0.0(transitive)

• + Addedlogform@2.7.0(transitive)

• + Addedms@2.1.3(transitive)

• + Addednan@2.22.0(transitive)

• + Addedone-time@1.0.0(transitive)

• + Addedreadable-stream@3.6.2(transitive)

• + Addedsafe-buffer@5.2.1(transitive)

• + Addedsafe-stable-stringify@2.5.0(transitive)

• + Addedsimple-swizzle@0.2.2(transitive)

• + Addedstring_decoder@1.3.0(transitive)

• + Addedtext-hex@1.0.0(transitive)

• + Addedtriple-beam@1.4.1(transitive)

• + Addedunix-dgram@2.0.6(transitive)

• + Addedutil-deprecate@1.0.2(transitive)

• + Addedwinston@3.17.0(transitive)

• + Addedwinston-syslog@2.7.1(transitive)

• + Addedwinston-transport@4.9.0(transitive)

• - Removedasync@2.6.4(transitive)

• - Removedbindings@1.1.1(transitive)

• - Removedcolors@1.0.3(transitive)

• - Removedcycle@1.0.3(transitive)

• - Removedeyes@0.1.8(transitive)

• - Removedisstream@0.1.2(transitive)

• - Removedlodash@4.17.21(transitive)

• - Removednan@2.3.5(transitive)

• - Removedunix-dgram@0.2.3(transitive)

• - Removedwinston@2.4.7(transitive)

• - Removedwinston-syslog@1.2.6(transitive)

• Updatedwinston@^3.0.0-rc1

• Updatedwinston-syslog@^2.0.0