@cloudbase/realtime
Advanced tools
@cloudbase/realtime - npm Package Compare versions
+3
-3
| { | ||
| "name": "@cloudbase/realtime", | ||
| "version": "1.1.3", | ||
| "version": "1.1.4-alpha.0", | ||
| "description": "cloudbase javascript sdk functions componets", | ||
@@ -30,3 +30,3 @@ "main": "dist/cjs/index.js", | ||
| "dependencies": { | ||
| "@cloudbase/types": "^1.1.2" | ||
| "@cloudbase/types": "^1.1.3-alpha.0" | ||
| }, | ||
@@ -52,3 +52,3 @@ "devDependencies": { | ||
| }, | ||
| "gitHead": "7dc89dfba393d435569a0db30d61a4c4e80e3876" | ||
| "gitHead": "c406b2e966b705b12e552cc9a8ef569b732b1118" | ||
| } |
New alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Fixed alerts
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
655881
0- Number of medium supply chain risk alerts
0
-100%Worsened metrics
- Number of low quality alerts
2
100%