@tiny-calc/nano
Advanced tools
@tiny-calc/nano - npm Package Compare versions
Comparing version 0.0.0-alpha.1 to 0.0.0-alpha.2
| { | ||
| "name": "@tiny-calc/nano", | ||
| "version": "0.0.0-alpha.1", | ||
| "version": "0.0.0-alpha.2", | ||
| "main": "dist/index.js", | ||
@@ -20,3 +20,3 @@ "sideEffects": "false", | ||
| "devDependencies": { | ||
| "@tiny-calc/tool-config": "0.0.0-alpha.1", | ||
| "@tiny-calc/tool-config": "0.0.0-alpha.2", | ||
| "@types/benchmark": "^1.0.31", | ||
@@ -23,0 +23,0 @@ "@types/mocha": "^5.2.6", |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Deprecated
MaintenanceThe maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by186.41%
407356
- Number of package files
- increased by177.27%
61
- Lines of code
- increased by53.55%
5497
- Number of medium maintenance alerts
- decreased by-100%
0
Worsened metrics
- Number of medium supply chain risk alerts
- increased by100%
2