@uniformdev/canvas-react - npm Package Compare versions

Comparing version 12.2.1-alpha.130 to 12.2.1-alpha.131

package.json

 {
   "name": "@uniformdev/canvas-react",
-  "version": "12.2.1-alpha.130+8121a627",
+  "version": "12.2.1-alpha.131+5bf57bb5",
   "description": "React SDK for Uniform Canvas",
@@ -28,5 +28,5 @@ "license": "SEE LICENSE IN LICENSE.txt",
   "dependencies": {
-    "@uniformdev/canvas": "^12.2.1-alpha.130+8121a627",
-    "@uniformdev/context": "^12.2.1-alpha.130+8121a627",
-    "@uniformdev/context-react": "^12.2.1-alpha.130+8121a627"
+    "@uniformdev/canvas": "^12.2.1-alpha.131+5bf57bb5",
+    "@uniformdev/context": "^12.2.1-alpha.131+5bf57bb5",
+    "@uniformdev/context-react": "^12.2.1-alpha.131+5bf57bb5"
   },
@@ -55,3 +55,3 @@ "peerDependencies": {
   },
-  "gitHead": "8121a627f5b23ec7faf8574c4b795802ba045aa8"
+  "gitHead": "5bf57bb51f3e8726dce0db3269d34c51a19b9340"
 }

New alerts

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Worsened metrics

Number of medium supply chain risk alerts

2

increased by100%

Dependency changes

• Updated@uniformdev/canvas@^12.2.1-alpha.131+5bf57bb5

• Updated@uniformdev/context@^12.2.1-alpha.131+5bf57bb5

• Updated@uniformdev/context-react@^12.2.1-alpha.131+5bf57bb5