		@@ -10,7 +10,7 @@ 'use strict';
		(store.versions \|\| (store.versions = [])).push({
		version: '3.45.0',
		version: '3.45.1',
		mode: IS_PURE ? 'pure' : 'global',
		copyright: '© 2014-2025 Denis Pushkarev (zloirock.ru)',
		license: 'https://github.com/zloirock/core-js/blob/v3.45.0/LICENSE',
		license: 'https://github.com/zloirock/core-js/blob/v3.45.1/LICENSE',
		source: 'https://github.com/zloirock/core-js'
		});

+2

-1

modules/esnext.map.get-or-insert-computed.js

+@@ -6,2 +6,3 @@ 'use strict';
+var MapHelpers = require('../internals/map-helpers');
+var IS_PURE = require('../internals/is-pure');
+@@ -14,3 +15,3 @@ var get = MapHelpers.get;
+// https://github.com/tc39/proposal-upsert
+$({ target: 'Map', proto: true, real: true }, {
+$({ target: 'Map', proto: true, real: true, forced: IS_PURE }, {
+  getOrInsertComputed: function getOrInsertComputed(key, callbackfn) {
+@@ -17,0 +18,0 @@ aMap(this);

+2

-1

modules/esnext.map.get-or-insert.js

+@@ -5,2 +5,3 @@ 'use strict';
+var MapHelpers = require('../internals/map-helpers');
+var IS_PURE = require('../internals/is-pure');
+@@ -13,3 +14,3 @@ var get = MapHelpers.get;
+// https://github.com/tc39/proposal-upsert
+$({ target: 'Map', proto: true, real: true }, {
+$({ target: 'Map', proto: true, real: true, forced: IS_PURE }, {
+  getOrInsert: function getOrInsert(key, value) {
+@@ -16,0 +17,0 @@ if (has(aMap(this), key)) return get(this, key);

+2

-1

modules/esnext.weak-map.get-or-insert-computed.js

+@@ -7,2 +7,3 @@ 'use strict';
+var WeakMapHelpers = require('../internals/weak-map-helpers');
+var IS_PURE = require('../internals/is-pure');
+@@ -15,3 +16,3 @@ var get = WeakMapHelpers.get;
+// https://github.com/tc39/proposal-upsert
+$({ target: 'WeakMap', proto: true, real: true }, {
+$({ target: 'WeakMap', proto: true, real: true, forced: IS_PURE }, {
+  getOrInsertComputed: function getOrInsertComputed(key, callbackfn) {
+@@ -18,0 +19,0 @@ aWeakMap(this);

+2

-1

modules/esnext.weak-map.get-or-insert.js

+@@ -5,2 +5,3 @@ 'use strict';
+var WeakMapHelpers = require('../internals/weak-map-helpers');
+var IS_PURE = require('../internals/is-pure');
+@@ -13,3 +14,3 @@ var get = WeakMapHelpers.get;
+// https://github.com/tc39/proposal-upsert
+$({ target: 'WeakMap', proto: true, real: true }, {
+$({ target: 'WeakMap', proto: true, real: true, forced: IS_PURE }, {
+  getOrInsert: function getOrInsert(key, value) {
+@@ -16,0 +17,0 @@ if (has(aWeakMap(this), key)) return get(this, key);

+4

-1

package.json

		{
		"name": "core-js",
		"version": "3.45.0",
		"version": "3.45.1",
		"type": "commonjs",
		@@ -59,2 +59,5 @@ "description": "Standard library",
		},
		"bugs": {
		"url": "https://github.com/zloirock/core-js/issues"
		},
		"funding": {
		@@ -61,0 +64,0 @@ "type": "opencollective",

+8

-8

README.md

		@@ -12,3 +12,3 @@ ![logo](https://user-images.githubusercontent.com/2213682/146607186-8e13ddef-26a4-4ebf-befd-5aac9d77c090.png)

		> Modular standard library for JavaScript. Includes polyfills for [ECMAScript up to 2023](https://github.com/zloirock/core-js#ecmascript): [promises](https://github.com/zloirock/core-js#ecmascript-promise), [symbols](https://github.com/zloirock/core-js#ecmascript-symbol), [collections](https://github.com/zloirock/core-js#ecmascript-collections), iterators, [typed arrays](https://github.com/zloirock/core-js#ecmascript-typed-arrays), many other features, [ECMAScript proposals](https://github.com/zloirock/core-js#ecmascript-proposals), [some cross-platform WHATWG / W3C features and proposals](#web-standards) like [`URL`](https://github.com/zloirock/core-js#url-and-urlsearchparams). You can load only required features or use it without global namespace pollution.
		> Modular standard library for JavaScript. Includes polyfills for [ECMAScript up to 2025](https://github.com/zloirock/core-js#ecmascript): [promises](https://github.com/zloirock/core-js#ecmascript-promise), [symbols](https://github.com/zloirock/core-js#ecmascript-symbol), [collections](https://github.com/zloirock/core-js#ecmascript-collections), iterators, [typed arrays](https://github.com/zloirock/core-js#ecmascript-typed-arrays), many other features, [ECMAScript proposals](https://github.com/zloirock/core-js#ecmascript-proposals), [some cross-platform WHATWG / W3C features and proposals](#web-standards) like [`URL`](https://github.com/zloirock/core-js#url-and-urlsearchparams). You can load only required features or use it without global namespace pollution.

		@@ -29,7 +29,7 @@ ## Raising funds

		[Example of usage](https://tinyurl.com/2mknex43):
		[Example of usage](https://tinyurl.com/28zqjbun):
		```js
		import 'core-js/actual';

		Promise.resolve(42).then(it => console.log(it)); // => 42
		Promise.try(() => 42).then(it => console.log(it)); // => 42

		@@ -40,3 +40,3 @@ Array.from(new Set([1, 2, 3]).union(new Set([3, 4, 5]))); // => [1, 2, 3, 4, 5]

		(function * (i) { while (true) yield i++; })(1)
		Iterator.concat([1, 2], function * (i) { while (true) yield i++; }(3))
		.drop(1).take(5)
		@@ -59,3 +59,3 @@ .filter(it => it % 2)

		Promise.resolve(42).then(it => console.log(it)); // => 42
		Promise.try(() => 42).then(it => console.log(it)); // => 42

		@@ -66,3 +66,3 @@ Array.from(new Set([1, 2, 3]).union(new Set([3, 4, 5]))); // => [1, 2, 3, 4, 5]

		(function * (i) { while (true) yield i++; })(1)
		Iterator.concat([1, 2], function * (i) { while (true) yield i++; }(3))
		.drop(1).take(5)
		@@ -85,3 +85,3 @@ .filter(it => it % 2)

		Promise.resolve(42).then(it => console.log(it)); // => 42
		Promise.try(() => 42).then(it => console.log(it)); // => 42

		@@ -92,3 +92,3 @@ from(new Set([1, 2, 3]).union(new Set([3, 4, 5]))); // => [1, 2, 3, 4, 5]

		Iterator.from(function * (i) { while (true) yield i++; }(1))
		Iterator.concat([1, 2], function * (i) { while (true) yield i++; }(3))
		.drop(1).take(5)
		@@ -95,0 +95,0 @@ .filter(it => it % 2)

New alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Fixed alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

No bug tracker

Maintenance

Package does not have a linked bug tracker in package.json.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

core-js - npm Package Compare versions

New alerts

Fixed alerts

Improved metrics