New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@tubular/array-buffer-reader
Advanced tools
@tubular/array-buffer-reader - npm Package Compare versions
+3
-2
| { | ||
| "name": "@tubular/array-buffer-reader", | ||
| "version": "3.0.3", | ||
| "version": "3.0.4", | ||
| "description": "Read from an array or ArrayBuffer like a binary input stream.", | ||
@@ -16,3 +16,4 @@ "module": "dist/index.min.mjs", | ||
| "browser": "./dist/index.min.js", | ||
| "default": "./dist/index.min.cjs" | ||
| "default": "./dist/index.min.cjs", | ||
| "types": "./dist/index.d.ts" | ||
| }, | ||
@@ -19,0 +20,0 @@ "./dist/cjs/index.js": "./dist/index.min.cjs", |
Fixed alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
43105
0.08%- Number of medium supply chain risk alerts
0
-100%No dependency changes