@parcel/types-internal
Advanced tools
@parcel/types-internal - npm Package Compare versions
+4
-4
| { | ||
| "name": "@parcel/types-internal", | ||
| "version": "2.16.2-canary.3489+9f01c02f8", | ||
| "version": "2.16.2", | ||
| "license": "MIT", | ||
@@ -19,8 +19,8 @@ "main": "src/index.js", | ||
| "dependencies": { | ||
| "@parcel/diagnostic": "2.0.0-canary.1866+9f01c02f8", | ||
| "@parcel/feature-flags": "2.16.2-canary.3489+9f01c02f8", | ||
| "@parcel/diagnostic": "2.16.2", | ||
| "@parcel/feature-flags": "2.16.2", | ||
| "@parcel/source-map": "^2.1.1", | ||
| "utility-types": "^3.11.0" | ||
| }, | ||
| "gitHead": "9f01c02f8d766cc8735df31f1ec96f6cf1fb9973" | ||
| "gitHead": "44a112137f68eb24dd5d962f12d2d96709af7468" | ||
| } |
New alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Improved metrics
- Number of low quality alerts
1
-50%- Number of medium supply chain risk alerts
0
-100%Worsened metrics
- Total package byte prevSize
153708
-0.04%Dependency changes
+ Added
@lezer/common@1.5.1(transitive)+ Added
@lezer/lr@1.4.8(transitive)+ Added
@mischnic/json-sourcemap@0.1.1(transitive)+ Added
@parcel/diagnostic@2.16.2(transitive)+ Added
@parcel/feature-flags@2.16.2(transitive)+ Added
json5@2.2.3(transitive)+ Added
nullthrows@1.1.1(transitive)Updated
@parcel/diagnostic@2.16.2Updated
@parcel/feature-flags@2.16.2