global-input-react
Advanced tools
Comparing version 4.0.0 to 4.0.1
{ | ||
"name": "global-input-react", | ||
"version": "4.0.0", | ||
"version": "4.0.1", | ||
"description": "global input react component", | ||
@@ -46,9 +46,6 @@ "repository": { | ||
"@babel/core": "^7.9.0", | ||
"@babel/plugin-proposal-class-properties": "^7.10.4", | ||
"@babel/preset-env": "^7.9.0", | ||
"@babel/preset-react": "^7.9.4", | ||
"@babel/register": "^7.9.0", | ||
"@storybook/addon-actions": "^5.3.18", | ||
"@storybook/addon-links": "^5.3.18", | ||
"@storybook/addons": "^5.3.18", | ||
"@storybook/react": "^5.3.18", | ||
"@testing-library/jest-dom": "^5.11.1", | ||
@@ -55,0 +52,0 @@ "@testing-library/react": "^10.4.7", |
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses eval() which is a dangerous function. This prevents the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 3 instances in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
674990
26
11
20145
18
2