New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
@inrixia/db
Advanced tools
@inrixia/db - npm Package Compare versions
+4
-2
| { | ||
| "name": "@inrixia/db", | ||
| "version": "1.7.1", | ||
| "version": "1.7.2", | ||
| "description": "Persisent object storage", | ||
@@ -8,3 +8,4 @@ "main": "dist/index.js", | ||
| "scripts": { | ||
| "prepare": "jest && tsc" | ||
| "prepare": "jest && tsc", | ||
| "test": "jest --" | ||
| }, | ||
@@ -25,2 +26,3 @@ "files": [ | ||
| "devDependencies": { | ||
| "@types/jest": "^26.0.22", | ||
| "@typescript-eslint/eslint-plugin": "^4.10.0", | ||
@@ -27,0 +29,0 @@ "@typescript-eslint/parser": "^4.10.0", |
New alerts
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
15705
0.15%Worsened metrics
- Dev dependency count
7
16.67%No dependency changes