@graphql-toolkit/url-loader - npm Package Compare versions

Comparing version 0.6.3-alpha.2 to 0.6.3-alpha.3

package.json

 {
   "name": "@graphql-toolkit/url-loader",
-  "version": "0.6.3-alpha.2+a521650",
+  "version": "0.6.3-alpha.3+78c5e24",
   "description": "A set of utils for faster development of GraphQL tools",
@@ -32,3 +32,3 @@ "repository": "git@github.com:dotansimha/graphql-toolkit.git",
   "dependencies": {
-    "@graphql-toolkit/common": "0.6.3-alpha.2+a521650",
+    "@graphql-toolkit/common": "0.6.3-alpha.3+78c5e24",
     "cross-fetch": "3.0.4",
@@ -40,3 +40,3 @@ "valid-url": "1.0.9"
   },
-  "gitHead": "a52165048698f78586a3bd467edf5a1f59081404"
+  "gitHead": "78c5e24a92ecceeace840d399050e34835d9554a"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Number of medium supply chain risk alerts

5

decreased by-16.67%

Dependency changes

• Updated@graphql-toolkit/common@0.6.3-alpha.3+78c5e24