@sd-jwt/decode - npm Package Compare versions

Comparing version 2.0.2-next.26 to 2.0.4-next.58

package.json

 {
   "name": "@sd-jwt/decode",
-  "version": "2.0.2-next.26+278b4fa",
+  "version": "2.0.4-next.58+99e0161",
   "description": "sd-jwt draft 7 implementation in typescript",
@@ -37,7 +37,7 @@ "main": "dist/index.js",
   "devDependencies": {
-    "@sd-jwt/crypto-nodejs": "2.0.2-next.26+278b4fa"
+    "@sd-jwt/crypto-nodejs": "2.0.4-next.58+99e0161"
   },
   "dependencies": {
-    "@sd-jwt/types": "2.0.2-next.26+278b4fa",
-    "@sd-jwt/utils": "2.0.2-next.26+278b4fa"
+    "@sd-jwt/types": "2.0.4-next.58+99e0161",
+    "@sd-jwt/utils": "2.0.4-next.58+99e0161"
   },
@@ -60,3 +60,3 @@ "publishConfig": {
   },
-  "gitHead": "278b4faf53b544d274ecb4e14a9f90c2312af846"
+  "gitHead": "99e0161ecb2c3e79d835afdc047a7b93d0509d41"
 }

New alerts

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Fixed alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Number of medium supply chain risk alerts

1

decreased by-66.67%

Dependency changes

• Updated@sd-jwt/types@2.0.4-next.58+99e0161

• Updated@sd-jwt/utils@2.0.4-next.58+99e0161