@verdaccio/local-storage
Advanced tools
@verdaccio/local-storage - npm Package Compare versions
Comparing version 1.1.3 to 1.1.4
@@ -5,2 +5,12 @@ # Change Log | ||
| <a name="1.1.4"></a> | ||
| ## [1.1.4](https://github.com/verdaccio/local-storage/compare/v1.1.3...v1.1.4) (2019-02-05) | ||
| ### Bug Fixes | ||
| * lodash vulnerability ([11eb253](https://github.com/verdaccio/local-storage/commit/11eb253)) | ||
| <a name="1.1.3"></a> | ||
@@ -7,0 +17,0 @@ ## [1.1.3](https://github.com/verdaccio/local-storage/compare/v1.1.2...v1.1.3) (2018-07-15) |
| { | ||
| "name": "@verdaccio/local-storage", | ||
| "version": "1.1.3", | ||
| "version": "1.1.4", | ||
| "description": "local storage implementation", | ||
@@ -21,4 +21,4 @@ "main": "lib/index.js", | ||
| "async": "2.6.1", | ||
| "http-errors": "1.6.2", | ||
| "lodash": "4.17.10", | ||
| "http-errors": "1.7.1", | ||
| "lodash": "4.17.11", | ||
| "mkdirp": "0.5.1" | ||
@@ -25,0 +25,0 @@ }, |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by147.51%
62185
- Number of package files
- increased by109.09%
23
- Lines of code
- increased by149.23%
1458
Worsened metrics
- Number of low supply chain risk alerts
- increased by66.67%
5
Dependency changes
+ Addeddepd@1.1.2(transitive)
+ Addedhttp-errors@1.7.1(transitive)
+ Addedlodash@4.17.11(transitive)
+ Addedsetprototypeof@1.1.0(transitive)
+ Addedtoidentifier@1.0.0(transitive)
- Removeddepd@1.1.1(transitive)
- Removedhttp-errors@1.6.2(transitive)
- Removedsetprototypeof@1.0.3(transitive)
Updatedhttp-errors@1.7.1
Updatedlodash@4.17.11