@ephox/acid - npm Package Compare versions

Comparing version 5.0.2-alpha.2 to 5.0.3

package.json

 {
   "name": "@ephox/acid",
   "description": "Color library including Alloy UI component for a color picker",
-  "version": "5.0.2-alpha.2",
+  "version": "5.0.3",
   "repository": {
@@ -11,6 +11,6 @@ "type": "git",
   "dependencies": {
-    "@ephox/alloy": "^10.1.0-alpha.2",
-    "@ephox/boulder": "^7.0.2-alpha.1",
-    "@ephox/katamari": "^9.0.2-alpha.1",
-    "@ephox/sugar": "^9.0.2-alpha.1",
+    "@ephox/alloy": "^10.1.1",
+    "@ephox/boulder": "^7.0.3",
+    "@ephox/katamari": "^9.0.3",
+    "@ephox/sugar": "^9.0.3",
     "tslib": "^2.0.0"
@@ -40,3 +40,3 @@ },
   },
-  "gitHead": "806e57825493c18413ce91854b128d42347648db"
+  "gitHead": "d16b897df187b9dce130b7ac4da68830f2ad528f"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Number of low quality alerts

1

decreased by-50%

Worsened metrics

Total package byte prevSize

149317

decreased by-0.03%

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• Updated@ephox/alloy@^10.1.1

• Updated@ephox/boulder@^7.0.3

• Updated@ephox/katamari@^9.0.3

• Updated@ephox/sugar@^9.0.3