npm-package-arg
Advanced tools
Comparing version 2.1.2 to 2.1.3
{ | ||
"name": "npm-package-arg", | ||
"version": "2.1.2", | ||
"version": "2.1.3", | ||
"description": "Parse the things that can be arguments to `npm install`", | ||
@@ -10,3 +10,3 @@ "main": "npa.js", | ||
"dependencies": { | ||
"semver": "^2.3.0 || 3.x || 4" | ||
"semver": "4" | ||
}, | ||
@@ -13,0 +13,0 @@ "devDependencies": { |
@@ -11,3 +11,3 @@ var npa = require("../npa.js") | ||
type: "range", | ||
spec: ">=1.2.0-0 <1.3.0-0", | ||
spec: ">=1.2.0 <1.3.0", | ||
raw: "foo@1.2", | ||
@@ -14,0 +14,0 @@ rawSpec: "1.2" |
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
17697
8
1
Updatedsemver@4