@vercel/stega
Advanced tools
Comparing version 0.0.1 to 0.0.2
{ | ||
"name": "@vercel/stega", | ||
"version": "0.0.1", | ||
"version": "0.0.2", | ||
"description": "Utilities for steganography", | ||
@@ -9,3 +9,6 @@ "main": "./dist/cjs/index.js", | ||
"source": "./src/index.ts", | ||
"files": ["dist"], | ||
"files": [ | ||
"dist" | ||
], | ||
"license": "MPL-2.0", | ||
"scripts": { | ||
@@ -12,0 +15,0 @@ "dev": "npm run build", |
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Copyleft License
License(Experimental) Copyleft license information was found
Found 1 instance in 1 package
SPDX disjunction
LicenseSPDX disjunction for an artifact's license information
Found 1 instance in 1 package
Mixed license
License(Experimental) Package contains multiple licenses.
Found 1 instance in 1 package
Non-permissive License
License(Experimental) A license not known to be considered permissive was found
Found 1 instance in 1 package
Non-existent author
Supply chain riskThe package was published by an npm account that no longer exists.
Found 1 instance in 1 package
SPDX disjunction
LicenseSPDX disjunction for an artifact's license information
Found 1 instance in 1 package
No License Found
License(Experimental) License information could not be found
Found 1 instance in 1 package
22838
14
0
4
70
1