@openzeppelin/defender-sdk-notification-channel-client - npm Package Compare versions

Comparing version 1.13.1 to 1.13.2

package.json

 {
   "name": "@openzeppelin/defender-sdk-notification-channel-client",
-  "version": "1.13.1",
+  "version": "1.13.2",
   "description": "",
@@ -17,3 +17,3 @@ "main": "./lib/index.js",
   "dependencies": {
-    "@openzeppelin/defender-sdk-base-client": "^1.13.1",
+    "@openzeppelin/defender-sdk-base-client": "^1.13.2",
     "axios": "^1.6.7",
@@ -20,0 +20,0 @@ "lodash": "^4.17.21"

New alerts

Deprecated

Maintenance

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Fixed alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Improved metrics

Number of low supply chain risk alerts

1

decreased by-75%

Worsened metrics

Total package byte prevSize

2130

decreased by-95.14%

Number of package files

3

decreased by-85%

Lines of code

0

decreased by-100%

Number of high maintenance alerts

1

increased byInfinity%

Number of medium supply chain risk alerts

2

increased byInfinity%

Dependency changes

• Updated@openzeppelin/defender-sdk-base-client@^1.13.2