New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
@typespec/openapi
Advanced tools
@typespec/openapi - npm Package Compare versions
+9
-9
| { | ||
| "name": "@typespec/openapi", | ||
| "version": "1.10.0-dev.4", | ||
| "version": "1.10.0", | ||
| "author": "Microsoft Corporation", | ||
@@ -42,12 +42,7 @@ "description": "TypeSpec library providing OpenAPI concepts", | ||
| "peerDependencies": { | ||
| "@typespec/compiler": "^1.9.0 || >= 1.10.0-dev.8", | ||
| "@typespec/http": "^1.9.1 || >= 1.10.0-dev.3" | ||
| "@typespec/compiler": "^1.10.0", | ||
| "@typespec/http": "^1.10.0" | ||
| }, | ||
| "devDependencies": { | ||
| "@types/node": "~25.3.0", | ||
| "@typespec/compiler": "^1.9.0 || >= 1.10.0-dev.8", | ||
| "@typespec/http": "^1.9.1 || >= 1.10.0-dev.3", | ||
| "@typespec/library-linter": "^0.79.0 || >= 0.80.0-dev.1", | ||
| "@typespec/rest": "^0.79.0 || >= 0.80.0-dev.2", | ||
| "@typespec/tspd": "^0.74.0 || >= 0.74.1-dev.3", | ||
| "@vitest/coverage-v8": "^4.0.18", | ||
@@ -58,3 +53,8 @@ "@vitest/ui": "^4.0.18", | ||
| "typescript": "~5.9.3", | ||
| "vitest": "^4.0.18" | ||
| "vitest": "^4.0.18", | ||
| "@typespec/compiler": "^1.10.0", | ||
| "@typespec/http": "^1.10.0", | ||
| "@typespec/rest": "^0.80.0", | ||
| "@typespec/library-linter": "^0.80.0", | ||
| "@typespec/tspd": "^0.74.1" | ||
| }, | ||
@@ -61,0 +61,0 @@ "scripts": { |
New alerts
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Fixed alerts
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Improved metrics
- Number of low quality alerts
0
-100%Worsened metrics
- Total package byte prevSize
72742
-0.19%No dependency changes