engine.io-client
Advanced tools
Comparing version 0.7.7 to 0.7.8
{ | ||
"name": "engine.io", | ||
"version": "0.7.7", | ||
"version": "0.7.8", | ||
"dependencies": { | ||
@@ -5,0 +5,0 @@ "component/emitter": "1.0.1", |
0.7.8 / 2013-08-30 | ||
================== | ||
* package: update "ws" | ||
0.7.7 / 2013-08-30 | ||
@@ -3,0 +8,0 @@ ================== |
{ | ||
"name": "engine.io-client", | ||
"description": "Client for the realtime Engine", | ||
"version": "0.7.7", | ||
"version": "0.7.8", | ||
"homepage": "https://github.com/LearnBoost/engine.io-client", | ||
@@ -23,3 +23,3 @@ "contributors": [ | ||
"has-cors": "https://github.com/component/has-cors/archive/v1.0.2.tar.gz", | ||
"ws": "0.4.30", | ||
"ws": "https://github.com/TooTallNate/ws/archive/0cb9fe7a21a7a7c200f68b57916d1d62b66082a1.tar.gz", | ||
"xmlhttprequest": "https://github.com/LearnBoost/node-XMLHttpRequest/archive/0f36d0b5ebc03d85f860d42a64ae9791e1daa433.tar.gz", | ||
@@ -26,0 +26,0 @@ "emitter": "http://github.com/component/emitter/archive/1.0.1.tar.gz", |
HTTP dependency
Supply chain riskContains a dependency which resolves to a remote HTTP URL which could be used to inject untrusted code and reduce overall package reliability.
Found 1 instance in 1 package
390601
5
- Removedcommander@0.6.1(transitive)
- Removednan@0.3.2(transitive)
- Removedoptions@0.0.6(transitive)
- Removedtinycolor@0.0.1(transitive)
- Removedws@0.4.30(transitive)
Updatedws@https://github.com/TooTallNate/ws/archive/0cb9fe7a21a7a7c200f68b57916d1d62b66082a1.tar.gz