escodegen - npm Package Compare versions

Comparing version 1.6.1 to 1.7.0

package.json

@@ -18,3 +18,3 @@ {
     ],
-    "version": "1.6.1",
+    "version": "1.7.0",
     "engines": {
@@ -36,3 +36,3 @@ "node": ">=0.10.0"
         "estraverse": "^1.9.1",
-        "esutils": "^1.1.6",
+        "esutils": "^2.0.2",
         "esprima": "^1.2.2",
@@ -42,3 +42,3 @@ "optionator": "^0.5.0"
     "optionalDependencies": {
-        "source-map": "~0.1.40"
+        "source-map": "~0.2.0"
     },
@@ -51,3 +51,3 @@ "devDependencies": {
         "commonjs-everywhere": "^0.9.7",
-        "esprima-moz": "*",
+        "esprima-moz": "1.0.0-dev-harmony-moz",
         "gulp": "^3.8.10",
@@ -58,8 +58,3 @@ "gulp-eslint": "^0.2.0",
     },
-    "licenses": [
-        {
-            "type": "BSD",
-            "url": "http://github.com/estools/escodegen/raw/master/LICENSE.BSD"
-        }
-    ],
+    "license": "BSD-2-Clause",
     "scripts": {
@@ -73,2 +68,2 @@ "test": "gulp travis",
     }
-}
+}

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

108010

increased by0.52%

Lines of code

2358

increased by0.6%

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Addedesutils@2.0.3(transitive)

• + Addedsource-map@0.2.0(transitive)

• - Removedesutils@1.1.6(transitive)

• - Removedsource-map@0.1.43(transitive)

• Updatedesutils@^2.0.2