co-assert-timeout - npm Package Compare versions

Comparing version 0.0.5 to 1.0.0

index.js

@@ -61,2 +61,2 @@ var co = require('co')
     && 'GeneratorFunction' === obj.constructor.name
-}
+}

package.json

 {
   "name": "co-assert-timeout",
   "description": "Assert a thunk or generator's timeout co-style",
-  "version": "0.0.5",
+  "version": "1.0.0",
   "author": {
@@ -21,15 +21,15 @@ "name": "Jonathan Ong",
   "dependencies": {
-    "co": "3",
-    "ms": "~0.6.2"
+    "co": "^3.1.0",
+    "ms": "^2.1.1"
   },
   "devDependencies": {
-    "mocha": "*",
-    "should": "*"
+    "mocha": "^5.2.0",
+    "should": "^13.2.3"
   },
   "scripts": {
-    "test": "make test;"
+    "test": "make test"
   },
   "engines": {
-    "node": ">= 0.11.3"
+    "node": ">= 8.0.0"
   }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Lines of code

52

increased by1.96%

Number of low quality alerts

1

decreased by-50%

Worsened metrics

Total package byte prevSize

4780

decreased by-0.31%

Number of package files

5

decreased by-16.67%

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Addedms@2.1.3(transitive)

• - Removedms@0.6.2(transitive)

• Updatedco@^3.1.0

• Updatedms@^2.1.1