New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
@freesewing/core
Advanced tools
@freesewing/core - npm Package Compare versions
+2
-2
| { | ||
| "name": "@freesewing/core", | ||
| "version": "4.0.0-rc.7", | ||
| "version": "4.0.0-rc.9", | ||
| "description": "A library for creating made-to-measure sewing patterns", | ||
@@ -45,3 +45,3 @@ "author": "Joost De Cock <joost@joost.at> (https://github.com/joostdecock)", | ||
| "dependencies": { | ||
| "@freesewing/core-plugins": "4.0.0-rc.7", | ||
| "@freesewing/core-plugins": "4.0.0-rc.9", | ||
| "bezier-js": "6.1.4", | ||
@@ -48,0 +48,0 @@ "hooks": "0.3.2", |
+2
-2
@@ -101,3 +101,3 @@ <p align='center'><a | ||
| ```bash | ||
| npx @freesewing/new-design | ||
| npx @freesewing/studio | ||
| ``` | ||
@@ -118,3 +118,3 @@ | ||
| ```bash | ||
| npx @freesewing/new-design | ||
| npx @freesewing/studio | ||
| ``` | ||
@@ -121,0 +121,0 @@ |
New alerts
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Worsened metrics
- Total package byte prevSize
218468
0Dependency changes
+ Added
@freesewing/core-plugins@4.0.0-rc.9(transitive)- Removed
@freesewing/core-plugins@4.0.0-rc.7(transitive)