bug-versions - npm Package Compare versions

Comparing version 1.70.6 to 1.70.7

package.json

 {
   "name": "bug-versions",
-  "version": "1.70.6",
+  "version": "1.70.7",
   "description": "collect all bug versions on npm package",
@@ -882,2 +882,8 @@ "main": "index.js",
         }
+      },
+      "lru-cache": {
+        "7.7.0": {
+          "version": "7.6.0",
+          "reason": "https://github.com/isaacs/node-lru-cache/pull/217/files"
+        }
       }
@@ -884,0 +890,0 @@ }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

35942

increased by3.42%

Number of package files

5

increased by25%

Worsened metrics

Number of medium supply chain risk alerts

2

increased by100%

No dependency changes