@endo/lockdown - npm Package Compare versions

Comparing version 0.1.23 to 0.1.24

CHANGELOG.md

@@ -6,2 +6,10 @@ # Change Log
 
+### [0.1.24](https://github.com/endojs/endo/compare/@endo/lockdown@0.1.23...@endo/lockdown@0.1.24) (2022-11-14)
+
+**Note:** Version bump only for package @endo/lockdown
+
+
+
+
+
 ### [0.1.23](https://github.com/endojs/endo/compare/@endo/lockdown@0.1.22...@endo/lockdown@0.1.23) (2022-10-24)
@@ -8,0 +16,0 @@

package.json

 {
   "name": "@endo/lockdown",
-  "version": "0.1.23",
+  "version": "0.1.24",
   "description": "Wrappers for hardening JavaScript for Endo",
@@ -19,3 +19,3 @@ "type": "module",
   "dependencies": {
-    "ses": "^0.17.0"
+    "ses": "^0.18.0"
   },
@@ -59,3 +59,3 @@ "files": [
   },
-  "gitHead": "8fb324d8f13a0c6939dc0c1feb831f72298f1853"
+  "gitHead": "da16a94856482e36296b7cae16d715aa63344928"
 }

pre.js

 // pre.js - set up the default lockdown function
+// @ts-nocheck
 /* global globalThis LOCKDOWN_OPTIONS process */
@@ -3,0 +4,0 @@

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

32558

increased by0.58%

Lines of code

247

increased by0.41%

Number of medium supply chain risk alerts

0

decreased by-100%

Dependency changes

• + Added@endo/env-options@0.1.4(transitive)

• + Addedses@0.18.8(transitive)

• - Removedses@0.17.1(transitive)

• Updatedses@^0.18.0