New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@vercel/static-build
Advanced tools
@vercel/static-build - npm Package Compare versions
Comparing version 0.16.1-canary.5 to 0.16.1-canary.6
| { | ||
| "name": "@vercel/static-build", | ||
| "version": "0.16.1-canary.5", | ||
| "version": "0.16.1-canary.6", | ||
| "license": "MIT", | ||
@@ -32,3 +32,3 @@ "main": "./dist/index", | ||
| }, | ||
| "gitHead": "898478d1e1712a761c6e87878ef6831c2a793767" | ||
| "gitHead": "2e0cee490d06c582896f2467ddfb422cfe99327d" | ||
| } |
Sorry, the diff of this file is too big to display
Fixed alerts
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-4%
24
- Number of medium supply chain risk alerts
- decreased by-3.03%
32
Worsened metrics
- Total package byte prevSize
- decreased by-0.01%
707152
- Lines of code
- decreased by-0.01%
14605
No dependency changes