lightstreamer-client
Advanced tools
Comparing version 6.2.7 to 7.0.3
{ | ||
"name": "lightstreamer-client", | ||
"version": "6.2.7", | ||
"version": "7.0.3", | ||
"description": "This package includes the resources needed to write a Lightstreamer client.", | ||
@@ -21,3 +21,3 @@ "keywords": [ | ||
"author": { | ||
"name" : "Weswit Srl", | ||
"name" : "Lightstreamer Srl", | ||
"email" : "support@lightstreamer.com" | ||
@@ -35,5 +35,5 @@ }, | ||
"dependencies": { | ||
"faye-websocket": "^0.10.0", | ||
"xmlhttprequest": "^1.8.0" | ||
"faye-websocket": "^0.11.0", | ||
"xmlhttprequest-cookie": "^0.9.4" | ||
} | ||
} |
@@ -48,2 +48,2 @@ # Lightstreamer Client # | ||
For further details check the [API](http://www.lightstreamer.com/docs/client_javascript_uni_api/index.html), the [Developer Guide](http://www.lightstreamer.com/docs/client_javascript_base/JavaScript%20Client%20Guide.pdf) and the available [examples](http://demos.lightstreamer.com/?p=lightstreamer&t=client&f=collaboration&f=finance&f=gaming&f=monitoring&f=news&f=quickstart&lclient=nodejs) | ||
For further details check the [API](http://www.lightstreamer.com/repo/res/ls-nodejs-client/7.0.3/ls-nodejs-client-7.0.3-jsdoc.zip%23/) and the available [examples](http://demos.lightstreamer.com/?p=lightstreamer&t=client&lclient=nodejs) |
Sorry, the diff of this file is too big to display
Uses eval
Supply chain riskPackage uses eval() which is a dangerous function. This prevents the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
179770
786
+ Addedxmlhttprequest-cookie@^0.9.4
+ Addedfaye-websocket@0.11.4(transitive)
+ Addedxmlhttprequest-cookie@0.9.9(transitive)
- Removedxmlhttprequest@^1.8.0
- Removedfaye-websocket@0.10.0(transitive)
Updatedfaye-websocket@^0.11.0