@flywire/react-flywire-js - npm Package Compare versions

Comparing version 1.0.0-beta.1 to 1.0.0-beta.2

package.json

 {
   "name": "@flywire/react-flywire-js",
-  "version": "1.0.0-beta.1",
+  "version": "1.0.0-beta.2",
   "description": "React components for Flywire",
@@ -65,3 +65,3 @@ "main": "dist/index.js",
   "peerDependencies": {
-    "flycomponents": "^4.2.5",
+    "jsrsasign": "^10.0.4",
     "react": "^17.0.1",
@@ -68,0 +68,0 @@ "react-dom": "^17.0.1"

README.md

@@ -18,3 +18,3 @@ # flywire-js &middot; [<img alt="Version" src="https://img.shields.io/npm/v/@flywire/react-flywire-js.svg">](https://www.npmjs.com/package/@flywire/react-flywire-js) [<img alt="Size" src="https://img.shields.io/bundlephobia/min/@flywire/react-flywire-js">](https://bundlephobia.com/result?p=@flywire/react-flywire-js)
 
-## How to use
+## Development
 
@@ -25,2 +25,3 @@ Install the dependencies and start the development server
 npm install
+npm install jsrsasign
 npm run dev
@@ -27,0 +28,0 @@ ```

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

697588

increased by677.82%

Lines of code

5161

increased by135.66%

Number of lines in readme file

48

increased by2.13%

Worsened metrics

Number of medium supply chain risk alerts

2

increased byInfinity%

No dependency changes