@stacks/common - npm Package Compare versions

Comparing version 7.1.2-pr.2 to 7.1.3-beta.0

package.json

 {
   "name": "@stacks/common",
-  "version": "7.1.2-pr.2+8b369f8e",
+  "version": "7.1.3-beta.0",
   "description": "Common Stacks utilities",
@@ -47,3 +47,3 @@ "license": "MIT",
   },
-  "gitHead": "8b369f8e290a24f91a8e49acab51a8d3ac786fd6"
+  "gitHead": "933a50e47804bb79e3524b52b7abd1a5e0b03624"
 }

New alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Fixed alerts

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Improved metrics

Number of medium supply chain risk alerts

40

-2.44%

Worsened metrics

Total package byte prevSize

263524

0

No dependency changes