New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@prisma/debug
Advanced tools
@prisma/debug - npm Package Compare versions
+1
-1
| { | ||
| "name": "@prisma/debug", | ||
| "version": "2.1.0-dev.32", | ||
| "version": "2.1.0-dev.33", | ||
| "main": "dist/index.js", | ||
@@ -5,0 +5,0 @@ "types": "dist/index.d.ts", |
New alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Fixed alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
No metric changes
No dependency changes