bundle
Advanced tools
Comparing version 0.1.5 to 0.1.6
@@ -12,3 +12,3 @@ | ||
exports.version = '0.1.3'; | ||
exports.version = '0.1.6'; | ||
@@ -15,0 +15,0 @@ /** |
{ | ||
"name": "bundle" | ||
, "version": "0.1.5" | ||
, "version": "0.1.6" | ||
, "description": "Bundle generator" | ||
@@ -12,3 +12,2 @@ , "keywords": [] | ||
, "main": "index" | ||
, "engines": { "node": "0.4.x" } | ||
} |
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
No License Found
License(Experimental) License information could not be found
Found 1 instance in 1 package
Non-existent author
Supply chain riskThe package was published by an npm account that no longer exists.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 2 instances in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
0
3
4
563399
29
1
691