fabric-contract-api - npm Package Compare versions

Comparing version 1.4.3-snapshot.41 to 1.4.4

package.json

 {
   "name": "fabric-contract-api",
-  "version": "1.4.3-snapshot.41",
-  "tag": "unstable-1.4",
+  "version": "1.4.4",
+  "tag": "latest",
   "description": "A node.js implementation of Hyperledger Fabric chaincode shim, to allow endorsing peers and user-provided chaincodes to communicate with each other",
@@ -37,3 +37,3 @@ "main": "index.js",
     "mocha-junit-reporter": "^1.23.1",
-    "nyc": "13.1.0",
+    "nyc": "^14.1.1",
     "typescript": "3.0.1"
@@ -40,0 +40,0 @@ },

README.md

@@ -5,3 +5,3 @@ [![NPM](https://nodei.co/npm/fabric-contract-api.svg?downloads=true&downloadRank=true&stars=true)](https://nodei.co/npm/fabric-contract-api/)
 
-[![Version](https://badge.fury.io/js/fabric-shim.svg)](http://badge.fury.io/js/fabric-shim) [![Build Status](https://jenkins.hyperledger.org/buildStatus/icon?job=fabric-chaincode-node-merge-x86_64)](https://jenkins.hyperledger.org/view/fabric-chaincode-node/job/fabric-chaincode-node-merge-x86_64)
+[![Version](https://badge.fury.io/js/fabric-shim.svg)](http://badge.fury.io/js/fabric-shim)
 
@@ -8,0 +8,0 @@ The `fabric-contract-api` provides the *contract interface*  a high level API for application developers to implement [Smart Contracts](https://hyperledger-fabric.readthedocs.io/en/latest/glossary.html#smart-contract). Working with this API provides a high level entry point to writing business logic.

New alerts

NPM Shrinkwrap

Supply chain risk

Package contains a shrinkwrap file. This may allow the package to bypass normal install procedures.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

AI detected potential malware

Supply chain risk

AI has identified this package as malware. This is a strong signal that the package may be malicious.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Lines of code

5678

increased by25.87%

Number of low quality alerts

1

decreased by-50%

Worsened metrics

Total package byte prevSize

222173

decreased by-53.67%

Number of package files

35

decreased by-41.67%

Number of medium supply chain risk alerts

1

increased byInfinity%

No dependency changes