@react-types/provider - npm Package Compare versions

Comparing version 3.3.1 to 3.3.2-nightly.2801

package.json

 {
   "name": "@react-types/provider",
-  "version": "3.3.1",
+  "version": "3.3.2-nightly.2801+47622d2b3",
   "description": "Spectrum UI components in React",
@@ -12,3 +12,3 @@ "license": "Apache-2.0",
   "dependencies": {
-    "@react-types/shared": "^3.7.1"
+    "@react-types/shared": "3.0.0-nightly.1116+47622d2b3"
   },
@@ -21,3 +21,3 @@ "peerDependencies": {
   },
-  "gitHead": "7a22a08c534513db71c2b31d9c45b64b2742a53e"
+  "gitHead": "47622d2b3c91c28111197009d38df6e576a6c23c"
 }

New alerts

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Fixed alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

15400

increased by0.29%

Worsened metrics

Number of low quality alerts

2

increased by100%

Dependency changes

• - Removed@react-types/shared@3.27.0(transitive)

• Updated@react-types/shared@3.0.0-nightly.1116+47622d2b3