@tinyhttp/app
Advanced tools
@tinyhttp/app - npm Package Compare versions
+4
-4
| { | ||
| "name": "@tinyhttp/app", | ||
| "version": "3.0.2", | ||
| "version": "3.0.3", | ||
| "description": "0-legacy, tiny & fast web framework as a replacement of Express", | ||
@@ -39,5 +39,5 @@ "type": "module", | ||
| "@tinyhttp/proxy-addr": "3.0.0", | ||
| "@tinyhttp/req": "2.2.6", | ||
| "@tinyhttp/res": "2.2.7", | ||
| "@tinyhttp/router": "2.2.3" | ||
| "@tinyhttp/router": "2.2.3", | ||
| "@tinyhttp/req": "2.2.7", | ||
| "@tinyhttp/res": "2.2.8" | ||
| }, | ||
@@ -44,0 +44,0 @@ "scripts": { |
New alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Dependency changes
+ Added
@tinyhttp/accepts@2.3.0(transitive)+ Added
@tinyhttp/req@2.2.7(transitive)+ Added
@tinyhttp/res@2.2.8(transitive)- Removed
@tinyhttp/accepts@2.2.4(transitive)- Removed
@tinyhttp/req@2.2.6(transitive)- Removed
@tinyhttp/res@2.2.7(transitive)- Removed
negotiator@1.0.0(transitive)Updated
@tinyhttp/req@2.2.7Updated
@tinyhttp/res@2.2.8