@parcel/types-internal
Advanced tools
@parcel/types-internal - npm Package Compare versions
+3
-3
| { | ||
| "name": "@parcel/types-internal", | ||
| "version": "2.16.3", | ||
| "version": "2.16.4-canary.3496+73f691d67", | ||
| "license": "MIT", | ||
@@ -19,4 +19,4 @@ "main": "src/index.js", | ||
| "dependencies": { | ||
| "@parcel/diagnostic": "2.16.3", | ||
| "@parcel/feature-flags": "2.16.3", | ||
| "@parcel/diagnostic": "2.0.0-canary.1873+73f691d67", | ||
| "@parcel/feature-flags": "2.16.4-canary.3496+73f691d67", | ||
| "@parcel/source-map": "^2.1.1", | ||
@@ -23,0 +23,0 @@ "utility-types": "^3.11.0" |
New alerts
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Fixed alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
153773
0.04%Worsened metrics
- Number of low quality alerts
2
100%- Number of medium supply chain risk alerts
1
Infinity%Dependency changes
- Removed
@lezer/common@1.5.1(transitive)- Removed
@lezer/lr@1.4.8(transitive)- Removed
@mischnic/json-sourcemap@0.1.1(transitive)- Removed
@parcel/diagnostic@2.16.3(transitive)- Removed
@parcel/feature-flags@2.16.3(transitive)- Removed
json5@2.2.3(transitive)- Removed
nullthrows@1.1.1(transitive)