@uniformdev/context - npm Package Compare versions

Comparing version 20.39.3-alpha.11 to 20.40.0

package.json

 {
   "name": "@uniformdev/context",
-  "version": "20.39.3-alpha.11+b3ab5fb305",
+  "version": "20.40.0",
   "description": "Uniform Context core package",
@@ -75,3 +75,3 @@ "license": "SEE LICENSE IN LICENSE.txt",
   },
-  "gitHead": "b3ab5fb305533690de4bbd859a69196b6c26ee2f"
+  "gitHead": "5a63373f91355d8865feac0d3fc11be59a5e38bd"
 }

New alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Fixed alerts

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Improved metrics

Number of low quality alerts

1

-50%

Number of medium supply chain risk alerts

33

-2.94%

Worsened metrics

Total package byte prevSize

656098

0

No dependency changes