@yarnpkg/libzip
Advanced tools
@yarnpkg/libzip - npm Package Compare versions
Comparing version 2.2.3-rc.11 to 2.2.3
| { | ||
| "name": "@yarnpkg/libzip", | ||
| "version": "2.2.3-rc.11", | ||
| "version": "2.2.3", | ||
| "license": "BSD-2-Clause", | ||
@@ -35,4 +35,3 @@ "main": "./lib/sync.js", | ||
| "node": ">=12 <14 || 14.2 - 14.9 || >14.10.0" | ||
| }, | ||
| "stableVersion": "2.2.2" | ||
| } | ||
| } |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Improved metrics
- Number of low quality alerts
- decreased by-50%
1
- Number of low supply chain risk alerts
- decreased by-100%
0
- Number of medium supply chain risk alerts
- decreased by-50%
2
Worsened metrics
- Total package byte prevSize
- decreased by-99.85%
1180
- Number of package files
- decreased by-83.33%
2
- Lines of code
- decreased by-100%
0