@quicknode/sdk - npm Package Compare versions

Comparing version 0.0.3 to 0.0.4

package.json

@@ -9,4 +9,5 @@ {
   "license": "MIT",
-  "version": "0.0.3",
+  "version": "0.0.4",
   "main": "./src/index.js",
+  "module": "./src/index.esm.js",
   "types": "./src/index.d.ts",
@@ -13,0 +14,0 @@ "dependencies": {

src/index.d.ts

@@ -1,4 +0,3 @@
-import 'cross-fetch/polyfill';
 export * from './client';
 export { QuickNodeSDK as default } from './client';
 export * from './queries';

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

655051

increased by1257%

Number of package files

14

increased by7.69%

Lines of code

15931

increased by3340.82%

Worsened metrics

Number of low supply chain risk alerts

6

increased by500%

Number of medium supply chain risk alerts

9

increased byInfinity%

No dependency changes