@noir-lang/noir_wasm
Advanced tools
Comparing version 0.5.0 to 0.5.1-260d87d
{ | ||
"name": "@noir-lang/noir_wasm", | ||
"version": "0.5.0", | ||
"collaborators": [ | ||
"The Noir Team <team@noir-lang.org>" | ||
], | ||
"version": "0.5.1-260d87d", | ||
"files": [ | ||
"noir_wasm_bg.wasm", | ||
"noir_wasm.js", | ||
"noir_wasm_bg.wasm.d.ts", | ||
"noir_wasm.d.ts", | ||
"snippets/*" | ||
"nodejs", | ||
"web", | ||
"package.json" | ||
], | ||
"main": "noir_wasm.js", | ||
"types": "noir_wasm.d.ts" | ||
} | ||
"main": "./nodejs/noir_wasm.js", | ||
"types": "./web/noir_wasm.d.ts", | ||
"module": "./web/noir_wasm.js", | ||
"sideEffects": false, | ||
"peerDependencies": { | ||
"@noir-lang/noir-source-resolver": "1.1.2" | ||
}, | ||
"repository": { | ||
"type": "git", | ||
"url": "https://github.com/noir-lang/noir_wasm.git" | ||
}, | ||
"compiler": { | ||
"versionHash": "260d87d1ef86069a1fcf0f9b4969589273e381d1" | ||
} | ||
} |
Native code
Supply chain riskContains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.
Found 2 instances in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Native code
Supply chain riskContains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.
Found 1 instance in 1 package
No README
QualityPackage does not have a README. This may indicate a failed publish or a low quality package.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
No repository
Supply chain riskPackage does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.
Found 1 instance in 1 package
8824317
10
641
1
4
3
1
4