@uniformdev/assets
Advanced tools
@uniformdev/assets - npm Package Compare versions
+3
-3
| { | ||
| "name": "@uniformdev/assets", | ||
| "version": "20.53.2-alpha.0+9f6b2ac29f", | ||
| "version": "20.54.0", | ||
| "description": "Uniform Assets", | ||
@@ -39,3 +39,3 @@ "license": "SEE LICENSE IN LICENSE.txt", | ||
| "dependencies": { | ||
| "@uniformdev/context": "20.53.2-alpha.0+9f6b2ac29f" | ||
| "@uniformdev/context": "20.54.0" | ||
| }, | ||
@@ -45,3 +45,3 @@ "devDependencies": { | ||
| }, | ||
| "gitHead": "9f6b2ac29f8ee91c8fe96e927eba23e4ed0dfee9" | ||
| "gitHead": "30a6699a8478b38fff6e633b496d42db5d2375cb" | ||
| } |
New alerts
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Improved metrics
- Number of low quality alerts
1
-50%- Number of medium supply chain risk alerts
14
-6.67%Worsened metrics
- Total package byte prevSize
198719
-0.02%Dependency changes
+ Added
@uniformdev/context@20.54.0(transitive)+ Added
dequal@2.0.3(transitive)+ Added
js-cookie@3.0.5(transitive)+ Added
mitt@3.0.1(transitive)+ Added
p-limit@3.1.0(transitive)+ Added
rfdc@1.4.1(transitive)+ Added
yocto-queue@0.1.0(transitive)Updated
@uniformdev/context@20.54.0