libnpmfund
Advanced tools
libnpmfund - npm Package Compare versions
Comparing version
| { | ||
| "name": "libnpmfund", | ||
| "version": "1.1.0", | ||
| "version": "2.0.2", | ||
| "main": "lib/index.js", | ||
| "files": [ | ||
| "index.js" | ||
| "bin", | ||
| "lib" | ||
| ], | ||
@@ -18,3 +20,3 @@ "description": "Programmatic API for npm fund", | ||
| ], | ||
| "author": "npm Inc. <support@npmjs.com>", | ||
| "author": "GitHub Inc.", | ||
| "contributors": [ | ||
@@ -30,3 +32,3 @@ { | ||
| "eslint": "eslint", | ||
| "lint": "npm run eslint -- index.js test.js", | ||
| "lint": "eslint '**/*.js'", | ||
| "lintfix": "npm run lint -- --fix", | ||
@@ -38,3 +40,4 @@ "posttest": "npm run lint", | ||
| "postversion": "npm publish", | ||
| "prepublishOnly": "git push origin --follow-tags" | ||
| "prepublishOnly": "git push origin --follow-tags", | ||
| "postlint": "npm-template-check" | ||
| }, | ||
@@ -44,18 +47,14 @@ "tap": { | ||
| }, | ||
| "standard": { | ||
| "ignore": [ | ||
| "/tap-snapshots/" | ||
| ] | ||
| }, | ||
| "devDependencies": { | ||
| "eslint": "^7.26.0", | ||
| "eslint-plugin-import": "^2.22.1", | ||
| "eslint-plugin-node": "^11.1.0", | ||
| "eslint-plugin-promise": "^5.1.0", | ||
| "eslint-plugin-standard": "^5.0.0", | ||
| "tap": "^15.0.9" | ||
| }, | ||
| "dependencies": { | ||
| "@npmcli/arborist": "^2.5.0" | ||
| "@npmcli/arborist": "^4.0.0" | ||
| }, | ||
| "engines": { | ||
| "node": "^12.13.0 || ^14.15.0 || >=16" | ||
| }, | ||
| "templateOSS": { | ||
| "version": "2.4.1" | ||
| } | ||
| } |
New alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
10869
0.24%- Dev dependency count
1
-83.33%- Lines of code
168
9.09%Worsened metrics
- Number of medium supply chain risk alerts
2
Infinity%Dependency changes
+ Added
@npmcli/arborist@4.3.1(transitive)+ Added
@npmcli/fs@2.1.2(transitive)+ Added
@npmcli/map-workspaces@2.0.4(transitive)+ Added
@npmcli/metavuln-calculator@2.0.0(transitive)+ Added
@npmcli/move-file@2.0.1(transitive)+ Added
@npmcli/run-script@2.0.0(transitive)+ Added
@tootallnate/once@2.0.0(transitive)+ Added
ansi-regex@5.0.1(transitive)+ Added
aproba@2.0.0(transitive)+ Added
are-we-there-yet@3.0.1(transitive)+ Added
bin-links@3.0.3(transitive)+ Added
brace-expansion@2.0.1(transitive)+ Added
cacache@16.1.3(transitive)+ Added
cmd-shim@5.0.0(transitive)+ Added
color-support@1.1.3(transitive)+ Added
emoji-regex@8.0.0(transitive)+ Added
gauge@4.0.4(transitive)+ Added
glob@8.1.0(transitive)+ Added
http-proxy-agent@5.0.0(transitive)+ Added
ignore-walk@4.0.1(transitive)+ Added
is-fullwidth-code-point@3.0.0(transitive)+ Added
just-diff@5.2.0(transitive)+ Added
just-diff-apply@5.5.0(transitive)+ Added
lru-cache@7.18.3(transitive)+ Added
make-fetch-happen@10.2.1(transitive)+ Added
minimatch@5.1.6(transitive)+ Added
minipass-fetch@2.1.2(transitive)+ Added
node-gyp@8.4.1(transitive)+ Added
npm-normalize-package-bin@2.0.0(transitive)+ Added
npm-packlist@3.0.0(transitive)+ Added
npm-registry-fetch@12.0.2(transitive)+ Added
npmlog@6.0.2(transitive)+ Added
pacote@12.0.3(transitive)+ Added
parse-conflict-json@2.0.2(transitive)+ Added
read-cmd-shim@3.0.1(transitive)+ Added
readable-stream@3.6.2(transitive)+ Added
safe-buffer@5.2.1(transitive)+ Added
socks-proxy-agent@7.0.0(transitive)+ Added
ssri@9.0.1(transitive)+ Added
string-width@4.2.3(transitive)+ Added
string_decoder@1.3.0(transitive)+ Added
strip-ansi@6.0.1(transitive)+ Added
unique-filename@2.0.1(transitive)+ Added
unique-slug@3.0.0(transitive)+ Added
write-file-atomic@4.0.2(transitive)- Removed
@npmcli/arborist@2.10.0(transitive)- Removed
@npmcli/map-workspaces@1.0.4(transitive)- Removed
@npmcli/metavuln-calculator@1.1.1(transitive)- Removed
@npmcli/run-script@1.8.6(transitive)- Removed
ajv@6.12.6(transitive)- Removed
ansi-regex@2.1.1(transitive)- Removed
aproba@1.2.0(transitive)- Removed
are-we-there-yet@1.1.7(transitive)- Removed
asn1@0.2.6(transitive)- Removed
assert-plus@1.0.0(transitive)- Removed
asynckit@0.4.0(transitive)- Removed
aws-sign2@0.7.0(transitive)- Removed
aws4@1.13.2(transitive)- Removed
bcrypt-pbkdf@1.0.2(transitive)- Removed
bin-links@2.3.0(transitive)- Removed
caseless@0.12.0(transitive)- Removed
cmd-shim@4.1.0(transitive)- Removed
code-point-at@1.1.0(transitive)- Removed
combined-stream@1.0.8(transitive)- Removed
core-util-is@1.0.21.0.3(transitive)- Removed
dashdash@1.14.1(transitive)- Removed
delayed-stream@1.0.0(transitive)- Removed
ecc-jsbn@0.1.2(transitive)- Removed
extend@3.0.2(transitive)- Removed
extsprintf@1.3.0(transitive)- Removed
fast-deep-equal@3.1.3(transitive)- Removed
fast-json-stable-stringify@2.1.0(transitive)- Removed
forever-agent@0.6.1(transitive)- Removed
form-data@2.3.3(transitive)- Removed
gauge@2.7.4(transitive)- Removed
getpass@0.1.7(transitive)- Removed
har-schema@2.0.0(transitive)- Removed
har-validator@5.1.5(transitive)- Removed
http-signature@1.2.0(transitive)- Removed
ignore-walk@3.0.4(transitive)- Removed
is-fullwidth-code-point@1.0.0(transitive)- Removed
is-typedarray@1.0.0(transitive)- Removed
isarray@1.0.0(transitive)- Removed
isstream@0.1.2(transitive)- Removed
jsbn@0.1.1(transitive)- Removed
json-schema@0.4.0(transitive)- Removed
json-schema-traverse@0.4.1(transitive)- Removed
json-stringify-safe@5.0.1(transitive)- Removed
jsprim@1.4.2(transitive)- Removed
just-diff@3.1.1(transitive)- Removed
just-diff-apply@3.1.2(transitive)- Removed
mime-db@1.52.0(transitive)- Removed
mime-types@2.1.35(transitive)- Removed
node-gyp@7.1.2(transitive)- Removed
npm-packlist@2.2.2(transitive)- Removed
npm-registry-fetch@11.0.0(transitive)- Removed
npmlog@4.1.2(transitive)- Removed
number-is-nan@1.0.1(transitive)- Removed
oauth-sign@0.9.0(transitive)- Removed
object-assign@4.1.1(transitive)- Removed
pacote@11.3.5(transitive)- Removed
parse-conflict-json@1.1.1(transitive)- Removed
performance-now@2.1.0(transitive)- Removed
process-nextick-args@2.0.1(transitive)- Removed
psl@1.15.0(transitive)- Removed
punycode@2.3.1(transitive)- Removed
qs@6.5.3(transitive)- Removed
read-cmd-shim@2.0.0(transitive)- Removed
readable-stream@2.3.8(transitive)- Removed
request@2.88.2(transitive)- Removed
safe-buffer@5.1.2(transitive)- Removed
sshpk@1.18.0(transitive)- Removed
string-width@1.0.2(transitive)- Removed
string_decoder@1.1.1(transitive)- Removed
strip-ansi@3.0.1(transitive)- Removed
tough-cookie@2.5.0(transitive)- Removed
tunnel-agent@0.6.0(transitive)- Removed
tweetnacl@0.14.5(transitive)- Removed
typedarray-to-buffer@3.1.5(transitive)- Removed
uri-js@4.4.1(transitive)- Removed
uuid@3.4.0(transitive)- Removed
verror@1.10.0(transitive)- Removed
write-file-atomic@3.0.3(transitive)Updated
@npmcli/arborist@^4.0.0