@financial-times/x-engine - npm Package Compare versions

Comparing version 1.0.0-1 to 1.0.0-3

package.json

 {
   "name": "@financial-times/x-engine",
-  "version": "1.0.0-1",
+  "version": "v1.0.0-3",
   "description": "A consolidation library to render x- components with any compatible runtime.",
@@ -19,3 +19,3 @@ "main": "src/server.js",
   },
-  "gitHead": "6189ce7da9ec4dc92a7d6e9bfe41a9bcbd8e9afd"
+  "gitHead": "dc1fb3601a8408f352531f550ccf61580089caa7"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

9842

increased by0.01%

Worsened metrics

Number of medium supply chain risk alerts

2

increased byInfinity%

No dependency changes