npm-install-checks - npm Package Compare versions

Comparing version 1.0.0 to 1.0.1

package.json

 {
   "name": "npm-install-checks",
-  "version": "1.0.0",
+  "version": "1.0.1",
   "description": "checks that npm runs during the installation of a module",
@@ -8,3 +8,3 @@ "main": "index.js",
     "npmlog": "0.0.6",
-    "semver": "~2.2.1"
+    "semver": "^2.3.0"
   },
@@ -21,5 +21,5 @@ "devDependencies": {
     "type": "git",
-    "url": "git://github.com/robertkowalski/npm-install-checks.git"
+    "url": "git://github.com/npm/npm-install-checks.git"
   },
-  "homepage": "https://github.com/robertkowalski/npm-install-checks",
+  "homepage": "https://github.com/npm/npm-install-checks",
   "keywords": [
@@ -32,4 +32,4 @@ "npm,",
   "bugs": {
-    "url": "https://github.com/robertkowalski/npm-install-checks/issues"
+    "url": "https://github.com/npm/npm-install-checks/issues"
   }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Mixed license

License

(Experimental) Package contains multiple licenses.

Found 1 instance in 1 package

Improved metrics

Number of low license alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

9287

decreased by-49.25%

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Addedsemver@2.3.2(transitive)

• - Removedsemver@2.2.1(transitive)

• Updatedsemver@^2.3.0