i18n-abide
Advanced tools
i18n-abide - npm Package Compare versions
Comparing version 0.0.17 to 0.0.18
@@ -5,3 +5,3 @@ { | ||
| "description": "Express/connect module for Node i18n and l10n support", | ||
| "version": "0.0.17", | ||
| "version": "0.0.18", | ||
| "homepage": "https://github.com/mozilla/i18n-abide", | ||
@@ -21,3 +21,3 @@ "repository": { | ||
| "async": "0.1.22", | ||
| "gobbledygook": "git://github.com/lloyd/gobbledygook.git#3540426", | ||
| "gobbledygook": "https://github.com/lloyd/gobbledygook/tarball/354042684056e57ca77f036989e907707a36cff2", | ||
| "jsxgettext": "0.3.9", | ||
@@ -24,0 +24,0 @@ "optimist": "0.3.4", |
New alerts
HTTP dependency
Supply chain riskContains a dependency which resolves to a remote HTTP URL which could be used to inject untrusted code and reduce overall package reliability.
Found 1 instance in 1 package
Fixed alerts
Git dependency
Supply chain riskContains a dependency which resolves to a remote git URL. Dependencies fetched from git URLs are not immutable and can be used to inject untrusted code or reduce the likelihood of a reproducible install.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.05%
82873
- Number of medium supply chain risk alerts
- decreased by-66.67%
1