@img/sharp-libvips-linux-x64 - npm Package Compare versions

Comparing version 0.0.1 to 0.0.2

package.json

 {
   "name": "@img/sharp-libvips-linux-x64",
-  "version": "0.0.1",
+  "version": "0.0.2",
   "description": "Prebuilt libvips and dependencies for use with sharp on Linux (glibc) x64",
@@ -5,0 +5,0 @@ "author": "Lovell Fuller <npm@lovell.info>",

README.md

@@ -22,2 +22,3 @@ # `@img/sharp-libvips-linux-x64`
 | harfbuzz      | MIT Licence                                                                                               |
+| highway       | Apache-2.0 License, BSD 3-Clause                                                                          |
 | lcms          | MIT Licence                                                                                               |
@@ -29,3 +30,2 @@ | libarchive    | BSD 2-Clause                                                                                              |
 | libimagequant | [BSD 2-Clause](https://github.com/lovell/libimagequant/blob/main/COPYRIGHT)                               |
-| mozjpeg       | [zlib License, IJG License, BSD-3-Clause](https://github.com/mozilla/mozjpeg/blob/master/LICENSE.md)      |
 | libnsgif      | MIT Licence                                                                                               |
@@ -39,3 +39,3 @@ | libpng        | [libpng License](https://github.com/glennrp/libpng/blob/master/LICENSE)                                   |
 | libxml2       | MIT Licence                                                                                               |
-| orc           | [orc License](https://gitlab.freedesktop.org/gstreamer/orc/blob/master/COPYING) (BSD-like)                |
+| mozjpeg       | [zlib License, IJG License, BSD-3-Clause](https://github.com/mozilla/mozjpeg/blob/master/LICENSE.md)      |
 | pango         | LGPLv3                                                                                                    |
@@ -42,0 +42,0 @@ | pixman        | MIT Licence                                                                                               |

versions.json

 {
-  "aom": "3.6.1",
+  "aom": "3.7.0",
   "archive": "3.7.2",
-  "cairo": "1.17.8",
+  "cairo": "1.18.0",
   "cgif": "0.3.2",
@@ -14,8 +14,8 @@ "exif": "0.6.24",
   "glib": "2.78.0",
-  "harfbuzz": "8.2.0",
-  "heif": "1.16.2",
+  "harfbuzz": "8.2.2",
+  "heif": "1.17.1",
+  "highway": "1.0.7",
   "imagequant": "2.4.1",
   "lcms": "2.15",
-  "mozjpeg": "4.1.4",
-  "orc": "0.4.34",
+  "mozjpeg": "4.1.5",
   "pango": "1.51.0",
@@ -28,3 +28,3 @@ "pixman": "0.42.2",
   "tiff": "4.6.0",
-  "vips": "8.14.5",
+  "vips": "8.15.0-rc1",
   "webp": "1.3.2",
@@ -31,0 +31,0 @@ "xml": "2.11.5",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Native code

Supply chain risk

Contains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Worsened metrics

Total package byte prevSize

16124503

decreased by-1.71%

Number of medium supply chain risk alerts

1

increased byInfinity%

No dependency changes