@cloudbase/realtime - npm Package Compare versions

Comparing version 2.0.1-alpha.0 to 2.0.2-alpha.0

package.json

 {
   "name": "@cloudbase/realtime",
-  "version": "2.0.1-alpha.0",
+  "version": "2.0.2-alpha.0",
   "description": "cloudbase javascript sdk functions componets",
@@ -30,3 +30,3 @@ "main": "dist/cjs/index.js",
   "dependencies": {
-    "@cloudbase/types": "^2.0.1-alpha.0"
+    "@cloudbase/types": "^2.0.2-alpha.0"
   },
@@ -52,3 +52,3 @@ "devDependencies": {
   },
-  "gitHead": "a1ff9c147bb221fc003d46533e6134ddb76df0ca"
+  "gitHead": "c232abfa13ce06dabbfab59ef10264c4df19dded"
 }

New alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Fixed alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Improved metrics

Number of medium supply chain risk alerts

0

-100%

Dependency changes

• Updated

  @cloudbase/types@^2.0.2-alpha.0