normalize-package-data
Advanced tools
Comparing version 2.3.6 to 2.3.7
{ | ||
"name": "normalize-package-data", | ||
"version": "2.3.6", | ||
"version": "2.3.7", | ||
"author": "Meryn Stol <merynstol@gmail.com>", | ||
@@ -25,3 +25,7 @@ "description": "Normalizes data that can be found in package.json files.", | ||
"underscore": "^1.8.3" | ||
} | ||
}, | ||
"files": [ | ||
"lib/*.js", | ||
"AUTHORS" | ||
] | ||
} |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
0
24095
9
458
1