conventional-changelog-writer - npm Package Compare versions

Comparing version 4.0.7 to 4.0.9

CHANGELOG.md

@@ -6,2 +6,10 @@ # Change Log
 
+## [4.0.8](https://github.com/conventional-changelog/conventional-changelog/compare/conventional-changelog-writer@4.0.7...conventional-changelog-writer@4.0.8) (2019-10-02)
+
+**Note:** Version bump only for package conventional-changelog-writer
+
+
+
+
+
 ## [4.0.7](https://github.com/conventional-changelog/conventional-changelog/compare/conventional-changelog-writer@4.0.6...conventional-changelog-writer@4.0.7) (2019-07-29)
@@ -8,0 +16,0 @@

package.json

 {
   "name": "conventional-changelog-writer",
-  "version": "4.0.7",
+  "version": "4.0.9",
   "description": "Write logs based on conventional commits and templates",
@@ -42,3 +42,3 @@ "bugs": {
     "dateformat": "^3.0.0",
-    "handlebars": "^4.1.2",
+    "handlebars": "^4.4.0",
     "json-stringify-safe": "^5.0.1",
@@ -57,3 +57,3 @@ "lodash": "^4.2.1",
   },
-  "gitHead": "dadbbf8b1acbe4b3a8f345633bde3f4a4ad0bea4"
+  "gitHead": "7c1c8ad819b05c12c7d58c92ac386b45ada6f6a8"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

56095

increased by0.44%

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• Updatedhandlebars@^4.4.0