gofer - npm Package Compare versions

Comparing version 1.0.1 to 1.0.2

package.json

 {
   "name": "gofer",
-  "version": "1.0.1",
+  "version": "1.0.2",
   "description": "A general purpose service client library for node.js",
@@ -47,3 +47,3 @@ "main": "lib/gofer.js",
     "node-uuid": "~1.4.1",
-    "request": "~2.34.0",
+    "request": "2.40.0",
     "debug": "~0.8.1"
@@ -50,0 +50,0 @@ },

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Worsened metrics

Total package byte prevSize

45078

Number of medium supply chain risk alerts

3

increased by50%

Dependency changes

• + Addedhawk@1.1.1(transitive)

• + Addedmime-types@1.0.2(transitive)

• + Addedqs@1.0.2(transitive)

• + Addedrequest@2.40.0(transitive)

• + Addedstringstream@0.0.6(transitive)

• + Addedtunnel-agent@0.4.3(transitive)

• - Removedhawk@1.0.0(transitive)

• - Removedqs@0.6.6(transitive)

• - Removedrequest@2.34.0(transitive)

• - Removedtunnel-agent@0.3.0(transitive)

• Updatedrequest@2.40.0