@snyk/fix-pipenv-pipfile - npm Package Compare versions

Comparing version 0.3.3 to 0.3.4

package.json

 {
   "name": "@snyk/fix-pipenv-pipfile",
   "description": "Snyk python ecosystem fix remediation",
-  "version": "0.3.3",
+  "version": "0.3.4",
   "main": "dist/index.js",
@@ -67,3 +67,3 @@ "scripts": {
   },
-  "gitHead": "e6119bb2b5abfc304c808b54d9c3bfa6fbe9d0bc"
+  "gitHead": "965be1adf78ebb5e7b044f02dda0b00fcdbc08ae"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

14332

increased by470.77%

Number of package files

17

increased by750%

Lines of code

209

increased byInfinity%

Worsened metrics

Number of medium supply chain risk alerts

2

increased by100%

No dependency changes