@pulumi/kubernetes
Advanced tools
@pulumi/kubernetes - npm Package Compare versions
Comparing version 0.14.1-dev-1532716478-gd5c2b36 to 0.14.1-dev-1532739502-g43f160c
| { | ||
| "name": "@pulumi/kubernetes", | ||
| "version": "v0.14.1-dev-1532716478-gd5c2b36", | ||
| "version": "v0.14.1-dev-1532739502-g43f160c", | ||
| "description": "A Pulumi package for creating and managing Kubernetes resources.", | ||
@@ -14,9 +14,15 @@ "license": "Apache 2.0", | ||
| "build": "tsc", | ||
| "install": "pulumi plugin install resource kubernetes v0.14.1-dev-1532716478-gd5c2b36" | ||
| "install": "pulumi plugin install resource kubernetes v0.14.1-dev-1532739502-g43f160c" | ||
| }, | ||
| "dependencies": { | ||
| "@pulumi/pulumi": "^0.14.0-rc1" | ||
| "@pulumi/pulumi": "^0.14.0-rc1", | ||
| "@types/js-yaml": "^3.11.2", | ||
| "js-yaml": "^3.12.0", | ||
| "shell-quote": "^1.6.1", | ||
| "tmp": "^0.0.33", | ||
| "@types/tmp": "^0.0.33" | ||
| }, | ||
| "devDependencies": { | ||
| "typescript": "^2.6.2" | ||
| "typescript": "^2.6.2", | ||
| "@types/shell-quote": "^1.6.0" | ||
| }, | ||
@@ -23,0 +29,0 @@ "pulumi": { |
Sorry, the diff of this file is not supported yet
Sorry, the diff of this file is too big to display
Sorry, the diff of this file is not supported yet
New alerts
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 1 instance in 1 package
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 1 instance in 1 package
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by2.44%
2038416
- Number of package files
- increased by15.38%
15
- Lines of code
- increased by2.09%
40551
Worsened metrics
- Dependency count
- increased by500%
6
- Dev dependency count
- increased by100%
2
- Number of low supply chain risk alerts
- increased by100%
2
- Number of medium supply chain risk alerts
- increased by300%
4
Dependency changes
+ Added@types/js-yaml@^3.11.2
+ Added@types/tmp@^0.0.33
+ Addedjs-yaml@^3.12.0
+ Addedshell-quote@^1.6.1
+ Addedtmp@^0.0.33
+ Added@types/js-yaml@3.12.10(transitive)
+ Added@types/tmp@0.0.33(transitive)
+ Addedargparse@1.0.10(transitive)
+ Addedesprima@4.0.1(transitive)
+ Addedjs-yaml@3.14.1(transitive)
+ Addedos-tmpdir@1.0.2(transitive)
+ Addedshell-quote@1.8.2(transitive)
+ Addedsprintf-js@1.0.3(transitive)
+ Addedtmp@0.0.33(transitive)