medusa-plugin-add-ons - npm Package Compare versions

Comparing version 1.0.3-alpha.20 to 1.0.3-alpha.21

package.json

 {
   "name": "medusa-plugin-add-ons",
-  "version": "1.0.3-alpha.20+d8483cd",
+  "version": "1.0.3-alpha.21+5071f36",
   "description": "Add-on plugin for Medusa Commerce",
@@ -43,3 +43,3 @@ "main": "index.js",
   },
-  "gitHead": "d8483cd1352ecc587112723786b7c31882f9416e"
+  "gitHead": "5071f362e4e140d11a1342a5058e8ad2efaa1ed4"
 }

services/add-on-line-item.js

@@ -229,3 +229,3 @@ "use strict";
 
-                if (!(expandFields.includes("add_ons") && decorated.metadata.add_ons)) {
+                if (!(expandFields.includes("add_ons") && decorated.metadata && decorated.metadata.add_ons)) {
                   _context4.next = 7;
@@ -232,0 +232,0 @@ break;

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

93904

increased by0.02%

Number of medium supply chain risk alerts

1

decreased by-50%

No dependency changes