@vercel/express
Advanced tools
@vercel/express - npm Package Compare versions
+4
-4
| { | ||
| "name": "@vercel/express", | ||
| "version": "0.1.60", | ||
| "version": "0.1.61", | ||
| "license": "Apache-2.0", | ||
@@ -20,3 +20,3 @@ "main": "./dist/index.js", | ||
| "dependencies": { | ||
| "@vercel/nft": "1.1.1", | ||
| "@vercel/nft": "1.4.0", | ||
| "fs-extra": "11.1.0", | ||
@@ -27,4 +27,4 @@ "path-to-regexp": "8.3.0", | ||
| "@vercel/static-config": "3.2.0", | ||
| "@vercel/cervel": "0.0.35", | ||
| "@vercel/node": "5.6.17" | ||
| "@vercel/cervel": "0.0.36", | ||
| "@vercel/node": "5.6.18" | ||
| }, | ||
@@ -31,0 +31,0 @@ "devDependencies": { |
New alerts
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Dependency changes
+ Added
@vercel/backends@0.0.49(transitive)+ Added
@vercel/cervel@0.0.36(transitive)+ Added
@vercel/nft@1.4.0(transitive)+ Added
@vercel/node@5.6.18(transitive)- Removed
@vercel/backends@0.0.48(transitive)- Removed
@vercel/cervel@0.0.35(transitive)- Removed
@vercel/nft@1.1.11.3.0(transitive)- Removed
@vercel/node@5.6.17(transitive)Updated
@vercel/cervel@0.0.36Updated
@vercel/nft@1.4.0Updated
@vercel/node@5.6.18