@agoric/captp
Advanced tools
@agoric/captp - npm Package Compare versions
Comparing version 1.10.7-dev-23c942c.0 to 1.10.7-dev-8002489.0
| { | ||
| "name": "@agoric/captp", | ||
| "version": "1.10.7-dev-23c942c.0+23c942c", | ||
| "version": "1.10.7-dev-8002489.0+8002489", | ||
| "description": "Capability Transfer Protocol for distributed objects", | ||
@@ -39,15 +39,14 @@ "type": "module", | ||
| "devDependencies": { | ||
| "@agoric/install-ses": "0.5.29-dev-23c942c.0+23c942c", | ||
| "@agoric/swingset-vat": "0.23.1-dev-23c942c.0+23c942c", | ||
| "@agoric/install-ses": "0.5.29-dev-8002489.0+8002489", | ||
| "@agoric/swingset-vat": "0.23.1-dev-8002489.0+8002489", | ||
| "@endo/ses-ava": "^0.2.8", | ||
| "ava": "^3.12.1", | ||
| "c8": "^7.7.2", | ||
| "ses": "^0.14.3" | ||
| "c8": "^7.7.2" | ||
| }, | ||
| "dependencies": { | ||
| "@agoric/assert": "0.3.15-dev-23c942c.0+23c942c", | ||
| "@agoric/eventual-send": "0.13.31-dev-23c942c.0+23c942c", | ||
| "@agoric/marshal": "0.4.29-dev-23c942c.0+23c942c", | ||
| "@agoric/assert": "0.3.15-dev-8002489.0+8002489", | ||
| "@agoric/eventual-send": "0.13.31-dev-8002489.0+8002489", | ||
| "@agoric/marshal": "0.4.29-dev-8002489.0+8002489", | ||
| "@agoric/nat": "^4.1.0", | ||
| "@agoric/promise-kit": "0.2.29-dev-23c942c.0+23c942c" | ||
| "@agoric/promise-kit": "0.2.29-dev-8002489.0+8002489" | ||
| }, | ||
@@ -75,3 +74,3 @@ "bugs": { | ||
| }, | ||
| "gitHead": "23c942cfc7eac8b214ad2dba591745e99abe3966" | ||
| "gitHead": "8002489fdfccf4772e76707cac456934868b0793" | ||
| } |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
Improved metrics
- Dev dependency count
- decreased by-16.67%
5
Worsened metrics
- Total package byte prevSize
- decreased by-0.03%
72138
- Number of medium supply chain risk alerts
- increased by100%
2