@bolt/settings-breakpoints - npm Package Compare versions

Comparing version 0.1.0-alpha.40b17e25 to 0.1.0-beta.2

package.json

@@ -11,4 +11,15 @@ {
   ],
-  "version": "0.1.0-alpha.40b17e25",
-  "author": "Mike Mai",
+  "version": "0.1.0-beta.2",
+  "maintainers": [
+    {
+      "name": "Salem Ghoweri",
+      "email": "me@salemghoweri.com",
+      "web": "https://github.com/sghoweri"
+    },
+    {
+      "name": "Mike Mai",
+      "email": "boss@mikemai.net",
+      "web": "http://mikemai.net/"
+    }
+  ],
   "homepage": "https://boltdesignsystem.com",
@@ -26,3 +37,8 @@ "license": "MIT",
     "access": "public"
-  }
+  },
+  "dependencies": {
+    "breakpoint-sass": "^2.7.1",
+    "breakpoint-slicer": "bolt-design-system/breakpoint-slicer"
+  },
+  "private": false
 }

New alerts

GitHub dependency

Supply chain risk

Contains a dependency which resolves to a GitHub URL. Dependencies fetched from GitHub specifiers are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

No contributors or author data

Maintenance

Package does not specify a list of contributors or an author in package.json.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

2081

increased by118.59%

Number of package files

4

increased by33.33%

Worsened metrics

Dependency count

2

increased byInfinity%

Number of low maintenance alerts

2

increased by100%

Number of high supply chain risk alerts

1

increased byInfinity%

Number of medium supply chain risk alerts

2

increased by100%

Dependency changes

• + Addedbreakpoint-sass@^2.7.1

• + Addedbreakpoint-slicer@bolt-design-system/breakpoint-slicer

• + Addedbreakpoint-sass@2.7.1(transitive)