metro-symbolicate
Advanced tools
metro-symbolicate - npm Package Compare versions
Comparing version 0.52.0 to 0.53.0
| { | ||
| "name": "metro-symbolicate", | ||
| "version": "0.52.0", | ||
| "description": "metro-symbolicate", | ||
| "main": "src/index.js", | ||
| "version": "0.53.0", | ||
| "description": "A tool to find the source location from JS bundles and stack traces.", | ||
| "license": "MIT", | ||
| "main": "./src/symbolicate.js", | ||
| "bin": "./src/symbolicate.js", | ||
| "repository": { | ||
@@ -14,7 +16,13 @@ "type": "git", | ||
| }, | ||
| "engines": { | ||
| "node": ">=8.3" | ||
| }, | ||
| "keywords": [ | ||
| "metro" | ||
| ], | ||
| "license": "MIT", | ||
| "dependencies": {} | ||
| } | ||
| "dependencies": { | ||
| "source-map": "^0.5.6", | ||
| "through2": "^2.0.1", | ||
| "vlq": "^1.0.0" | ||
| } | ||
| } |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by19579.34%
106662
- Number of package files
- increased by566.67%
20
- Lines of code
- increased byInfinity%
1526
Worsened metrics
- Dependency count
- increased byInfinity%
3
- Number of low supply chain risk alerts
- increased byInfinity%
5
- Number of medium supply chain risk alerts
- increased by200%
3
Dependency changes
+ Addedsource-map@^0.5.6
+ Addedthrough2@^2.0.1
+ Addedvlq@^1.0.0
+ Addedcore-util-is@1.0.3(transitive)
+ Addedinherits@2.0.4(transitive)
+ Addedisarray@1.0.0(transitive)
+ Addedprocess-nextick-args@2.0.1(transitive)
+ Addedreadable-stream@2.3.8(transitive)
+ Addedsafe-buffer@5.1.2(transitive)
+ Addedsource-map@0.5.7(transitive)
+ Addedstring_decoder@1.1.1(transitive)
+ Addedthrough2@2.0.5(transitive)
+ Addedutil-deprecate@1.0.2(transitive)
+ Addedvlq@1.0.1(transitive)
+ Addedxtend@4.0.2(transitive)