groq - npm Package Compare versions
Comparing version 0.140.0 to 0.140.10-alpha.80
| { | ||
| "name": "groq", | ||
| "version": "0.140.0", | ||
| "version": "0.140.10-alpha.80+e21f54fb1", | ||
| "description": "Tagged template literal for Sanity.io GROQ-queries", | ||
@@ -38,3 +38,3 @@ "main": "lib/groq.js", | ||
| "homepage": "https://www.sanity.io/", | ||
| "gitHead": "230394c89b3d2adf36a922fe9dc189bb955122ce" | ||
| "gitHead": "e21f54fb123e5f9ef60a946a469300b336b03289" | ||
| } |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.5%
4010
Worsened metrics
- Number of medium supply chain risk alerts
- increased byInfinity%
2