eslint-mdx
Advanced tools
Comparing version 2.0.0-next.4 to 2.0.0-next.5
{ | ||
"name": "eslint-mdx", | ||
"version": "2.0.0-next.4", | ||
"version": "2.0.0-next.5", | ||
"description": "ESLint Parser for MDX", | ||
@@ -42,3 +42,3 @@ "repository": "git+https://github.com/mdx-js/eslint-mdx.git", | ||
}, | ||
"gitHead": "a4078f230a449cd953aa1229c198cd9fbe3f838f" | ||
"gitHead": "dfa23d2c485fbd8049d46194da4233869fc5a4c0" | ||
} |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
83553
22
1089
7
3