Comparing version 0.1.0 to 0.1.1
{ | ||
"name": "hubkit", | ||
"version": "0.1.0", | ||
"version": "0.1.1", | ||
"homepage": "https://github.com/pkaminski/hubkit", | ||
@@ -24,4 +24,4 @@ "authors": [ | ||
"dependencies": { | ||
"superagent": "pkaminski/superagent" | ||
"superagent": "pkaminski/superagent#master" | ||
} | ||
} |
{ | ||
"name": "hubkit", | ||
"version": "0.1.0", | ||
"version": "0.1.1", | ||
"description": "GitHub API library for JavaScript, promise-based, for both NodeJS and the browser", | ||
@@ -25,4 +25,4 @@ "main": "index.js", | ||
"dependencies": { | ||
"superagent": "pkaminski/superagent" | ||
"superagent": "pkaminski/superagent#master" | ||
} | ||
} |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
GitHub dependency
Supply chain riskContains a dependency which resolves to a GitHub URL. Dependencies fetched from GitHub specifiers are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
GitHub dependency
Supply chain riskContains a dependency which resolves to a GitHub URL. Dependencies fetched from GitHub specifiers are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.
Found 1 instance in 1 package
Manifest confusion
Supply chain riskThis package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.
Found 1 instance in 1 package
13996
0