@agoric/marshal - npm Package Compare versions

Comparing version 0.4.29-dev-f662032.0 to 0.5.0

CHANGELOG.md

@@ -6,2 +6,24 @@ # Change Log
 
+## [0.5.0](https://github.com/Agoric/agoric-sdk/compare/@agoric/marshal@0.4.28...@agoric/marshal@0.5.0) (2021-12-02)
+
+
+### ⚠ BREAKING CHANGES
+
+* **ERTP:** NatValues now only accept bigints, lower-case amountMath is removed, and AmountMath methods always follow the order of: brand, value
+
+* chore: fix up INPUT_VALIDATON.md
+
+* chore: address PR comments
+
+### Bug Fixes
+
+* default to disallowing implicit remotables ([#3736](https://github.com/Agoric/agoric-sdk/issues/3736)) ([d14a665](https://github.com/Agoric/agoric-sdk/commit/d14a66548f3981334f9738bbca3b906901c2e657))
+
+
+### Miscellaneous Chores
+
+* **ERTP:** additional input validation and clean up ([#3892](https://github.com/Agoric/agoric-sdk/issues/3892)) ([067ea32](https://github.com/Agoric/agoric-sdk/commit/067ea32b069596202d7f8e7c5e09d5ea7821f6b2))
+
+
+
 ### [0.4.28](https://github.com/Agoric/agoric-sdk/compare/@agoric/marshal@0.4.27...@agoric/marshal@0.4.28) (2021-10-13)
@@ -8,0 +30,0 @@

package.json

 {
   "name": "@agoric/marshal",
-  "version": "0.4.29-dev-f662032.0+f662032",
+  "version": "0.5.0",
   "description": "marshal",
@@ -37,9 +37,9 @@ "type": "module",
   "dependencies": {
-    "@agoric/assert": "0.3.15-dev-f662032.0+f662032",
-    "@agoric/eventual-send": "0.13.31-dev-f662032.0+f662032",
+    "@agoric/assert": "^0.3.15",
+    "@agoric/eventual-send": "^0.14.0",
     "@agoric/nat": "^4.1.0",
-    "@agoric/promise-kit": "0.2.29-dev-f662032.0+f662032"
+    "@agoric/promise-kit": "^0.2.29"
   },
   "devDependencies": {
-    "@agoric/lockdown": "0.1.1-dev-f662032.0+f662032",
+    "@agoric/lockdown": "^0.1.1",
     "@endo/ses-ava": "^0.2.8",
@@ -72,3 +72,3 @@ "ava": "^3.12.1",
   },
-  "gitHead": "f662032ab0da89725cd6626a4d7d376993141807"
+  "gitHead": "6bf2266dced044bdf0152dd1ecf68fedf95c40a4"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Deprecated

Maintenance

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

128034

increased by0.56%

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Number of medium maintenance alerts

1

increased byInfinity%

Dependency changes

• + Added@agoric/assert@0.3.16(transitive)

• + Added@agoric/eventual-send@0.14.1(transitive)

• + Added@agoric/promise-kit@0.2.29(transitive)

• Updated@agoric/assert@^0.3.15

• Updated@agoric/eventual-send@^0.14.0

• Updated@agoric/promise-kit@^0.2.29