@vltpkg/security-archive - npm Package Compare versions

Comparing version 1.0.0-rc.17 to 1.0.0-rc.18

package.json

 {
   "name": "@vltpkg/security-archive",
   "description": "A database of security information of packages",
-  "version": "1.0.0-rc.17",
+  "version": "1.0.0-rc.18",
   "repository": {
@@ -15,8 +15,8 @@ "type": "git",
     "package-json-from-dist": "^1.0.1",
-    "@vltpkg/dep-id": "1.0.0-rc.17",
-    "@vltpkg/error-cause": "1.0.0-rc.17",
-    "@vltpkg/graph": "1.0.0-rc.17",
-    "@vltpkg/spec": "1.0.0-rc.17",
-    "@vltpkg/types": "1.0.0-rc.17",
-    "@vltpkg/xdg": "1.0.0-rc.17"
+    "@vltpkg/dep-id": "1.0.0-rc.18",
+    "@vltpkg/error-cause": "1.0.0-rc.18",
+    "@vltpkg/graph": "1.0.0-rc.18",
+    "@vltpkg/types": "1.0.0-rc.18",
+    "@vltpkg/xdg": "1.0.0-rc.18",
+    "@vltpkg/spec": "1.0.0-rc.18"
   },
@@ -23,0 +23,0 @@ "devDependencies": {

New alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Fixed alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

No metric changes

Dependency changes

• + Added

  @vltpkg/cache@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/cache-unzip@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/cmd-shim@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/dep-id@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/dss-breadcrumb@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/dss-parser@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/error-cause@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/fast-split@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/git@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/git-scp-url@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/graph@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/graph-run@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/init@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/keychain@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/output@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/package-info@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/package-json@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/pick-manifest@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/promise-spawn@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/query@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/registry-client@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/rollback-remove@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/run@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/satisfies@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/semver@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/spec@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/tar@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/types@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/url-open@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/vlt-json@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/which@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/workspaces@1.0.0-rc.18
  (transitive)

• + Added

  @vltpkg/xdg@1.0.0-rc.18
  (transitive)

• - Removed

  @vltpkg/cache@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/cache-unzip@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/cmd-shim@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/dep-id@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/dss-breadcrumb@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/dss-parser@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/error-cause@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/fast-split@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/git@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/git-scp-url@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/graph@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/graph-run@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/init@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/keychain@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/output@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/package-info@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/package-json@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/pick-manifest@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/promise-spawn@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/query@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/registry-client@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/rollback-remove@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/run@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/satisfies@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/semver@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/spec@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/tar@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/types@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/url-open@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/vlt-json@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/which@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/workspaces@1.0.0-rc.17
  (transitive)

• - Removed

  @vltpkg/xdg@1.0.0-rc.17
  (transitive)

• Updated

  @vltpkg/dep-id@1.0.0-rc.18

• Updated

  @vltpkg/error-cause@1.0.0-rc.18

• Updated

  @vltpkg/graph@1.0.0-rc.18

• Updated

  @vltpkg/spec@1.0.0-rc.18

• Updated

  @vltpkg/types@1.0.0-rc.18

• Updated

  @vltpkg/xdg@1.0.0-rc.18