@wordpress/url
Advanced tools
@wordpress/url - npm Package Compare versions
+2
-0
@@ -5,2 +5,4 @@ <!-- Learn how to maintain this file at https://github.com/WordPress/gutenberg/tree/HEAD/packages#maintaining-changelogs. --> | ||
| ## 4.41.0 (2026-03-04) | ||
| ## 4.40.0 (2026-02-18) | ||
@@ -7,0 +9,0 @@ |
+2
-2
| { | ||
| "name": "@wordpress/url", | ||
| "version": "4.40.1-next.v.202602271551.0+464abe399", | ||
| "version": "4.41.0", | ||
| "description": "WordPress URL utilities.", | ||
@@ -52,3 +52,3 @@ "author": "The WordPress Contributors", | ||
| }, | ||
| "gitHead": "95aa7055a5757219e2d96a91efc69f7dd1b2d4c3" | ||
| "gitHead": "8bfc179b9aed74c0a6dd6e8edf7a49e40e4f87cc" | ||
| } |
New alerts
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Fixed alerts
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Improved metrics
- Number of low quality alerts
0
-100%- Number of medium supply chain risk alerts
0
-100%Worsened metrics
- Total package byte prevSize
291571
0