New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@accordproject/concerto-tools
Advanced tools
@accordproject/concerto-tools - npm Package Compare versions
Comparing version 0.80.1-20190916200833 to 0.80.2-20190925200615
| { | ||
| "name": "@accordproject/concerto-tools", | ||
| "version": "0.80.1-20190916200833", | ||
| "version": "0.80.2-20190925200615", | ||
| "description": "Tools for the Concerto Modeling Language", | ||
@@ -30,3 +30,3 @@ "engines": { | ||
| "type": "git", | ||
| "url": "https://github.com/accordproject/concerto-tools.git" | ||
| "url": "https://github.com/accordproject/concerto.git" | ||
| }, | ||
@@ -64,3 +64,3 @@ "keywords": [ | ||
| "dependencies": { | ||
| "@accordproject/concerto": "0.80.0", | ||
| "@accordproject/concerto": "0.80.2-20190925200615", | ||
| "debug": "4.1.0", | ||
@@ -67,0 +67,0 @@ "mkdirp": "0.5.1", |
Sorry, the diff of this file is too big to display
Fixed alerts
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by29.11%
667943
- Number of low supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Number of package files
- decreased by-60%
18
- Lines of code
- decreased by-3.6%
3611
Dependency changes
+ Added@accordproject/concerto@0.80.2-20190925200615(transitive)
- Removed@accordproject/concerto@0.80.0(transitive)