New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@dependabit/plugin-http
Advanced tools
@dependabit/plugin-http - npm Package Compare versions
+8
-0
| # @dependabit/plugin-http | ||
| ## 0.1.2 | ||
| ### Patch Changes | ||
| - Add gitignore-aware exclusions for manifest detection | ||
| - Updated dependencies | ||
| - @dependabit/manifest@0.1.2 | ||
| ## 0.1.1 | ||
@@ -4,0 +12,0 @@ |
+3
-3
| { | ||
| "name": "@dependabit/plugin-http", | ||
| "version": "0.1.1", | ||
| "version": "0.1.2", | ||
| "description": "Generic HTTP plugin with content hashing for dependency tracking", | ||
@@ -16,6 +16,6 @@ "type": "module", | ||
| "zod": "^4.3.6", | ||
| "@dependabit/manifest": "0.1.1" | ||
| "@dependabit/manifest": "0.1.2" | ||
| }, | ||
| "devDependencies": { | ||
| "@types/node": "^25.2.2", | ||
| "@types/node": "^25.2.3", | ||
| "tsx": "^4.21.0", | ||
@@ -22,0 +22,0 @@ "typescript": "^5.9.3", |
Sorry, the diff of this file is not supported yet
No alert changes
Improved metrics
- Total package byte prevSize
52087
0.27%Dependency changes
+ Added
@dependabit/manifest@0.1.2(transitive)- Removed
@dependabit/manifest@0.1.1(transitive)Updated
@dependabit/manifest@0.1.2