@ndla/carousel - npm Package Compare versions

Comparing version 0.3.0 to 0.3.1

package.json

 {
   "name": "@ndla/carousel",
-  "version": "0.3.0",
+  "version": "0.3.1",
   "description": "Carousel for NDLA",
@@ -28,3 +28,3 @@ "license": "GPL-3.0",
   "dependencies": {
-    "@ndla/core": "^0.6.3",
+    "@ndla/core": "^0.6.4",
     "react-swipeable": "^5.0.1"
@@ -41,3 +41,3 @@ },
   },
-  "gitHead": "b10930801d5385b9b1199cd4ef6fc75e05e9e577"
+  "gitHead": "2e9272648a78c54703c267b08d2d87806295c8c3"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• Updated@ndla/core@^0.6.4