melody-compiler - npm Package Compare versions

Comparing version 1.7.1 to 1.7.2

package.json

 {
   "name": "melody-compiler",
-  "version": "1.7.1",
+  "version": "1.7.2",
   "description": "",
@@ -17,3 +17,3 @@ "main": "./lib/index.js",
     "lodash": "^4.12.0",
-    "melody-code-frame": "1.7.1",
+    "melody-code-frame": "^1.7.2",
     "random-seed": "^0.3.0"
@@ -29,6 +29,6 @@ },
   "devDependencies": {
-    "melody-extension-core": "1.7.1",
-    "melody-plugin-idom": "1.7.1"
+    "melody-extension-core": "^1.7.2",
+    "melody-plugin-idom": "^1.7.2"
   },
-  "gitHead": "895fa69a727adce760dd9dde6cd6e39f1a08852e"
+  "gitHead": "2c6d4d2bdc3a19ecf654e86616e4fc92ebe95dfd"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

211155

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• - Removedmelody-code-frame@1.7.1(transitive)

• Updatedmelody-code-frame@^1.7.2