@uniformdev/context - npm Package Compare versions

Comparing version 20.38.2-alpha.9 to 20.39.0

package.json

 {
   "name": "@uniformdev/context",
-  "version": "20.38.2-alpha.9+de3aa3f1aa",
+  "version": "20.39.0",
   "description": "Uniform Context core package",
@@ -75,3 +75,3 @@ "license": "SEE LICENSE IN LICENSE.txt",
   },
-  "gitHead": "de3aa3f1aa5fc604edb758087e3ab5cf81e71c43"
+  "gitHead": "a6b57927bdc7689ed81d89b2f49bcdab5768ef2f"
 }

New alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Fixed alerts

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Improved metrics

Number of low quality alerts

1

-50%

Number of medium supply chain risk alerts

33

-2.94%

Worsened metrics

Total package byte prevSize

656098

0

No dependency changes