bitmovin-player - npm Package Compare versions

Comparing version 5.2.0 to 5.2.1

package.json

 {
   "name": "bitmovin-player",
   "description": "The Bitmovin HTML5 Adaptive Streaming Player for MPEG-DASH and HLS",
-  "version": "5.2.0",
+  "version": "5.2.1",
   "homepage": "https://bitmovin.com",
@@ -30,5 +30,8 @@ "keywords": [
   },
-  "readme": "README.md",
+  "repository": {
+    "type": "git",
+    "url": ""
+  },
   "main": "bitdash.min.js",
   "private": false
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

2327813

increased by0.13%

Worsened metrics

Lines of code

2489

decreased by-1.03%

No dependency changes