@react-native-community/cli-tools - npm Package Compare versions

Comparing version 20.0.0-alpha.0 to 20.0.0-alpha.2

package.json

 {
   "name": "@react-native-community/cli-tools",
-  "version": "20.0.0-alpha.0",
+  "version": "20.0.0-alpha.2",
   "license": "MIT",
@@ -22,3 +22,3 @@ "main": "build/index.js",
   "devDependencies": {
-    "@react-native-community/cli-types": "20.0.0-alpha.0",
+    "@react-native-community/cli-types": "20.0.0-alpha.2",
     "@types/mime": "^2.0.1",
@@ -40,3 +40,3 @@ "@types/node": "^18.0.0",
   },
-  "gitHead": "b683e70d31dc0e73b4de11e0a987fdeb3dd65840"
+  "gitHead": "e2888d269dedca7999692320a081b9e243083f8e"
 }

New alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

No metric changes

No dependency changes