@storybook/manager - npm Package Compare versions

Comparing version 7.0.2 to 7.1.0-alpha.0

package.json

 {
   "name": "@storybook/manager",
-  "version": "7.0.2",
+  "version": "7.1.0-alpha.0",
   "description": "Core Storybook UI",
@@ -58,15 +58,15 @@ "keywords": [
     "@fal-works/esbuild-plugin-global-externals": "^2.1.2",
-    "@storybook/addons": "7.0.2",
-    "@storybook/api": "7.0.2",
-    "@storybook/channel-postmessage": "7.0.2",
-    "@storybook/channel-websocket": "7.0.2",
-    "@storybook/channels": "7.0.2",
-    "@storybook/client-logger": "7.0.2",
-    "@storybook/components": "7.0.2",
-    "@storybook/core-events": "7.0.2",
+    "@storybook/addons": "7.1.0-alpha.0",
+    "@storybook/api": "7.1.0-alpha.0",
+    "@storybook/channel-postmessage": "7.1.0-alpha.0",
+    "@storybook/channel-websocket": "7.1.0-alpha.0",
+    "@storybook/channels": "7.1.0-alpha.0",
+    "@storybook/client-logger": "7.1.0-alpha.0",
+    "@storybook/components": "7.1.0-alpha.0",
+    "@storybook/core-events": "7.1.0-alpha.0",
     "@storybook/global": "^5.0.0",
-    "@storybook/manager-api": "7.0.2",
-    "@storybook/router": "7.0.2",
-    "@storybook/theming": "7.0.2",
-    "@storybook/types": "7.0.2",
+    "@storybook/manager-api": "7.1.0-alpha.0",
+    "@storybook/router": "7.1.0-alpha.0",
+    "@storybook/theming": "7.1.0-alpha.0",
+    "@storybook/types": "7.1.0-alpha.0",
     "@testing-library/react": "^11.2.2",
@@ -105,3 +105,3 @@ "@types/semver": "^7.3.4",
   },
-  "gitHead": "96b498debee8b89d0c4050c13172a5a818c9997a"
+  "gitHead": "8ff2938f8ac0c2d524ae653cd89251e5cd4721a4"
 }

New alerts

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Fixed alerts

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

8230374

Worsened metrics

Lines of code

32265

Number of low quality alerts

2

increased by100%

No dependency changes