New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
@xmpp/resolve
Advanced tools
@xmpp/resolve - npm Package Compare versions
+5
-5
@@ -7,3 +7,3 @@ { | ||
| "bugs": "http://github.com/xmppjs/xmpp.js/issues", | ||
| "version": "0.9.2", | ||
| "version": "0.10.0", | ||
| "license": "ISC", | ||
@@ -25,5 +25,5 @@ "keywords": [ | ||
| "dependencies": { | ||
| "@xmpp/events": "^0.9.0", | ||
| "@xmpp/xml": "^0.9.2", | ||
| "node-fetch": "^2.3.0" | ||
| "@xmpp/events": "^0.10.0", | ||
| "@xmpp/xml": "^0.10.0", | ||
| "node-fetch": "^2.6.0" | ||
| }, | ||
@@ -37,3 +37,3 @@ "engines": { | ||
| }, | ||
| "gitHead": "d2b855dc553274eee2f304489c3a61b7d28266df" | ||
| "gitHead": "0e54f63a0ecfb64a51ee132d08c135d76d0636b7" | ||
| } |
New alerts
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
Improved metrics
- Total package byte prevSize
15091
0.02%Dependency changes
+ Added
@xmpp/events@0.10.0(transitive)+ Added
@xmpp/xml@0.10.0(transitive)- Removed
@xmpp/events@0.9.0(transitive)- Removed
@xmpp/xml@0.9.2(transitive)Updated
@xmpp/events@^0.10.0Updated
@xmpp/xml@^0.10.0Updated
node-fetch@^2.6.0