@kaizen/component-library
Advanced tools
@kaizen/component-library - npm Package Compare versions
Comparing version 4.2.1 to 4.2.2
@@ -25,3 +25,3 @@ { | ||
| "sideEffects": false, | ||
| "version": "4.2.1", | ||
| "version": "4.2.2", | ||
| "private": false, | ||
@@ -43,3 +43,3 @@ "license": "MIT", | ||
| "lodash": "^4.17.11", | ||
| "motion-ui": "^2.0.3", | ||
| "motion-ui": "cultureamp/motion-ui", | ||
| "react-animate-height": "^2.0.15", | ||
@@ -62,3 +62,3 @@ "react-focus-lock": "^1.19.1", | ||
| }, | ||
| "gitHead": "a194b8ceb964611be040648379c3b9de21ac9e56" | ||
| "gitHead": "3ccb5c2c8d453d5ab12cd2f1b74c0eb6d3c76acc" | ||
| } |
Sorry, the diff of this file is too big to display
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
GitHub dependency
Supply chain riskContains a dependency which resolves to a GitHub URL. Dependencies fetched from GitHub specifiers are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.
Found 1 instance in 1 package
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.03%
1687319
Worsened metrics
- Number of high supply chain risk alerts
- increased byInfinity%
1
- Number of medium supply chain risk alerts
- increased byInfinity%
1
Dependency changes
- Removedjquery@3.7.1(transitive)
- Removedmotion-ui@2.0.5(transitive)