@pnpm/lockfile-file - npm Package Compare versions

Comparing version 4.2.0 to 4.2.1

package.json

 {
   "name": "@pnpm/lockfile-file",
-  "version": "4.2.0",
+  "version": "4.2.1",
   "description": "Read/write pnpm-lock.yaml files",
   "main": "lib/index.js",
-  "typings": "lib/index.d.ts",
+  "types": "lib/index.d.ts",
   "engines": {
@@ -42,5 +42,5 @@ "node": ">=12.17"
     "@pnpm/error": "2.0.0",
-    "@pnpm/lockfile-types": "3.1.0",
-    "@pnpm/merge-lockfile-changes": "2.0.2",
-    "@pnpm/types": "7.5.0",
+    "@pnpm/lockfile-types": "3.1.1",
+    "@pnpm/merge-lockfile-changes": "2.0.3",
+    "@pnpm/types": "7.6.0",
     "@zkochan/rimraf": "^2.1.1",
@@ -47,0 +47,0 @@ "comver-to-semver": "^1.0.0",

Fixed alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

43800

Dependency changes

• + Added@pnpm/lockfile-types@3.1.1(transitive)

• + Added@pnpm/merge-lockfile-changes@2.0.3(transitive)

• + Added@pnpm/types@7.6.0(transitive)

• - Removed@pnpm/lockfile-types@3.1.0(transitive)

• - Removed@pnpm/merge-lockfile-changes@2.0.2(transitive)

• - Removed@pnpm/types@7.5.0(transitive)

• Updated@pnpm/lockfile-types@3.1.1

• Updated@pnpm/merge-lockfile-changes@2.0.3

• Updated@pnpm/types@7.6.0