New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@schlomoh/react-cookieconsent
Advanced tools
@schlomoh/react-cookieconsent - npm Package Compare versions
Comparing version 1.0.0 to 1.0.1
| { | ||
| "name": "@schlomoh/react-cookieconsent", | ||
| "version": "1.0.0", | ||
| "version": "1.0.1", | ||
| "description": "cookie banner written in typescript and react", | ||
@@ -10,3 +10,4 @@ "main": "index.tsx", | ||
| "scripts": { | ||
| "test": "echo \"Error: no test specified\" && exit 1" | ||
| "test": "echo \"Error: no test specified\" && exit 1", | ||
| "start": "webpack serve" | ||
| }, | ||
@@ -16,3 +17,11 @@ "author": "schlomoh - moritz becker", | ||
| "devDependencies": { | ||
| "typescript": "^4.6.3" | ||
| "@types/react": "^17.0.43", | ||
| "@types/react-dom": "^17.0.14", | ||
| "css-loader": "^6.7.1", | ||
| "html-webpack-plugin": "^5.5.0", | ||
| "ts-loader": "^9.2.8", | ||
| "typescript": "^4.6.3", | ||
| "webpack": "^5.70.0", | ||
| "webpack-cli": "^4.9.2", | ||
| "webpack-dev-server": "^4.7.4" | ||
| }, | ||
@@ -19,0 +28,0 @@ "dependencies": { |
New alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Fixed alerts
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by373.07%
3619
- Number of downloads
- increased by109.38%
134
- Number of package files
- increased by350%
9
- Lines of code
- increased byInfinity%
79
- Number of medium supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Dev dependency count
- increased by800%
9
- Number of low supply chain risk alerts
- increased by100%
2
No dependency changes