@iabtcf/core - npm Package Compare versions

Comparing version 1.2.0 to 1.2.1-0

package.json

 {
   "name": "@iabtcf/core",
-  "version": "1.2.0",
+  "version": "1.2.1-0",
   "description": "Ensures consistent encoding and decoding of TC Signals for the iab. Transparency and Consent Framework (TCF).",
@@ -23,3 +23,3 @@ "author": "Chris Paterson <tcf@chrispaterson.io>",
   "devDependencies": {
-    "@iabtcf/testing": "1.2.0",
+    "@iabtcf/testing": "1.2.1-0",
     "@istanbuljs/nyc-config-typescript": "^0.1.3",
@@ -26,0 +26,0 @@ "@types/sinon": "^7.0.13",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Deprecated

Maintenance

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

144376

Number of medium maintenance alerts

0

decreased by-100%

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Number of low quality alerts

29

increased by3.57%

No dependency changes