abstract-state-router
Advanced tools
abstract-state-router - npm Package Compare versions
Comparing version 6.0.4 to 6.0.5
@@ -0,1 +1,5 @@ | ||
| # [6.0.5](https://github.com/TehShrike/abstract-state-router/releases/tag/v6.0.5) | ||
| - maintenance: added a bunch of files to the `.npmignore` to reduce the package download size | ||
| # [6.0.4](https://github.com/TehShrike/abstract-state-router/releases/tag/v6.0.4) | ||
@@ -2,0 +6,0 @@ |
| { | ||
| "name": "abstract-state-router", | ||
| "version": "6.0.4", | ||
| "version": "6.0.5", | ||
| "description": "Like ui-router, but without all the Angular. The best way to structure a single-page webapp.", | ||
@@ -5,0 +5,0 @@ "main": "bundle.js", |
@@ -11,3 +11,3 @@ abstract-state-router lets you build single-page webapps using nested routes/states. Your code doesn't reference routes directly, like `/app/users/josh`, but by name and properties, like `app.user` + `{ name: 'josh' }`. | ||
| If you have any questions, [ask me on Gitter](https://gitter.im/TehShrike/abstract-state-router)! [](https://gitter.im/TehShrike/abstract-state-router) | ||
| If you have any questions, [join the chat on Discord](https://discord.gg/G8FrErC)! | ||
@@ -14,0 +14,0 @@ # 2017-10: major version bump, 6.0! |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Total package byte prevSize
- decreased by-91.85%
94674
- Number of package files
- decreased by-88.64%
5
- Lines of code
- decreased by-96.39%
644