@dfinity/assets
Advanced tools
@dfinity/assets - npm Package Compare versions
Comparing version 0.21.2 to 0.21.3
| { | ||
| "name": "@dfinity/assets", | ||
| "version": "0.21.2", | ||
| "version": "0.21.3", | ||
| "author": "DFINITY Stiftung <sdk@dfinity.org>", | ||
@@ -52,4 +52,4 @@ "license": "Apache-2.0", | ||
| "peerDependencies": { | ||
| "@dfinity/agent": "^0.21.2", | ||
| "@dfinity/principal": "^0.21.2", | ||
| "@dfinity/agent": "^0.21.3", | ||
| "@dfinity/principal": "^0.21.3", | ||
| "@noble/hashes": "^1.3.1" | ||
@@ -56,0 +56,0 @@ }, |
New alerts
Deprecated
MaintenanceThe maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Fixed alerts
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Total package byte prevSize
- decreased by-94.38%
18026
- Number of package files
- decreased by-95.77%
3
- Lines of code
- decreased by-100%
0
- Number of medium maintenance alerts
- increased byInfinity%
1
- Number of medium supply chain risk alerts
- increased byInfinity%
3