New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
@stdlib/string-left-pad
Advanced tools
@stdlib/string-left-pad - npm Package Compare versions
+4
-4
| { | ||
| "name": "@stdlib/string-left-pad", | ||
| "version": "0.1.0", | ||
| "version": "0.1.1", | ||
| "description": "Left pad a string.", | ||
@@ -41,6 +41,6 @@ "license": "Apache-2.0", | ||
| "@stdlib/assert-is-nonnegative-integer": "^0.1.0", | ||
| "@stdlib/assert-is-string": "^0.1.0", | ||
| "@stdlib/constants-float64-max-safe-integer": "^0.1.0", | ||
| "@stdlib/assert-is-string": "^0.1.1", | ||
| "@stdlib/constants-float64-max-safe-integer": "^0.1.1", | ||
| "@stdlib/string-base-left-pad": "^0.1.0", | ||
| "@stdlib/string-format": "^0.1.0" | ||
| "@stdlib/string-format": "^0.1.1" | ||
| }, | ||
@@ -47,0 +47,0 @@ "devDependencies": { |
+2
-2
@@ -198,4 +198,4 @@ <!-- | ||
| [test-image]: https://github.com/stdlib-js/string-left-pad/actions/workflows/test.yml/badge.svg?branch=v0.1.0 | ||
| [test-url]: https://github.com/stdlib-js/string-left-pad/actions/workflows/test.yml?query=branch:v0.1.0 | ||
| [test-image]: https://github.com/stdlib-js/string-left-pad/actions/workflows/test.yml/badge.svg?branch=v0.1.1 | ||
| [test-url]: https://github.com/stdlib-js/string-left-pad/actions/workflows/test.yml?query=branch:v0.1.1 | ||
@@ -202,0 +202,0 @@ [coverage-image]: https://img.shields.io/codecov/c/github/stdlib-js/string-left-pad/main.svg |
New alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Fixed alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Improved metrics
- Number of medium supply chain risk alerts
0
-100%Worsened metrics
- Number of low supply chain risk alerts
7
Infinity%