@jupyterlab/builder
Advanced tools
@jupyterlab/builder - npm Package Compare versions
+3
-3
| { | ||
| "name": "@jupyterlab/builder", | ||
| "version": "4.5.2", | ||
| "version": "4.5.3", | ||
| "description": "JupyterLab - Extension Builder", | ||
@@ -37,3 +37,3 @@ "homepage": "https://github.com/jupyterlab/jupyterlab", | ||
| "@lumino/algorithm": "^2.0.4", | ||
| "@lumino/application": "^2.4.5", | ||
| "@lumino/application": "^2.4.6", | ||
| "@lumino/commands": "^2.3.3", | ||
@@ -48,3 +48,3 @@ "@lumino/coreutils": "^2.2.2", | ||
| "@lumino/virtualdom": "^2.0.4", | ||
| "@lumino/widgets": "^2.7.2", | ||
| "@lumino/widgets": "^2.7.3", | ||
| "ajv": "^8.12.0", | ||
@@ -51,0 +51,0 @@ "commander": "^9.4.1", |
New alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Fixed alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Dependency changes
Updated
@lumino/application@^2.4.6Updated
@lumino/widgets@^2.7.3