@highoutput/amqp
Advanced tools
Comparing version 0.5.12 to 0.5.13
{ | ||
"name": "@highoutput/amqp", | ||
"version": "0.5.12", | ||
"version": "0.5.13", | ||
"description": "A simplified abstraction of the AMQP 1.0 protocol", | ||
@@ -50,3 +50,3 @@ "keywords": [ | ||
"ramda": "^0.27.0", | ||
"rhea": "git+ssh://git@github.com/HighOutputVentures/rhea.git#semver:~1.1.1", | ||
"rhea": "git+https://github.com/HighOutputVentures/rhea.git#semver:~1.1.1", | ||
"serialize-error": "^5.0.0", | ||
@@ -58,3 +58,3 @@ "uuid": "^3.4.0" | ||
}, | ||
"gitHead": "9720b91d1e6c66dd6a0d2939cc923ae54e42936e" | ||
"gitHead": "54bd3e56fc80e05828b6d1fa7ed9c3b4cda5d43d" | ||
} |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Git dependency
Supply chain riskContains a dependency which resolves to a remote git URL. Dependencies fetched from git URLs are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Git dependency
Supply chain riskContains a dependency which resolves to a remote git URL. Dependencies fetched from git URLs are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
0
69309