nuxi - npm Package Compare versions

Comparing version 3.0.0-rc.9 to 3.0.0-rc.10

package.json

 {
   "name": "nuxi",
-  "version": "3.0.0-rc.9",
+  "version": "3.0.0-rc.10",
   "repository": "nuxt/framework",
@@ -21,4 +21,4 @@ "license": "MIT",
   "devDependencies": {
-    "@nuxt/kit": "3.0.0-rc.9",
-    "@nuxt/schema": "3.0.0-rc.9",
+    "@nuxt/kit": "3.0.0-rc.10",
+    "@nuxt/schema": "3.0.0-rc.10",
     "@types/clear": "^0",
@@ -28,3 +28,3 @@ "@types/flat": "^5.0.2",
     "@types/semver": "^7",
-    "c12": "^0.2.10",
+    "c12": "^0.2.12",
     "chokidar": "^3.5.3",
@@ -39,13 +39,12 @@ "clear": "^0.1.0",
     "flat": "^5.0.2",
-    "jiti": "^1.14.0",
+    "giget": "^0.1.6",
+    "jiti": "^1.15.0",
     "listhen": "^0.2.15",
     "mlly": "^0.5.14",
     "mri": "^1.2.0",
-    "pathe": "^0.3.5",
+    "pathe": "^0.3.7",
     "perfect-debounce": "^0.1.3",
-    "pkg-types": "^0.3.4",
+    "pkg-types": "^0.3.5",
     "scule": "^0.3.2",
     "semver": "^7.3.7",
-    "superb": "^4.0.0",
-    "tiged": "^2.12.0",
     "unbuild": "latest"
@@ -52,0 +51,0 @@ },

New alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 7 instances in 1 package

AI-detected potential code anomaly

Supply chain risk

AI has identified unusual behaviors that may pose a security risk.

Found 1 instance in 1 package

Fixed alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 4 instances in 1 package

AI-detected potential code anomaly

Supply chain risk

AI has identified unusual behaviors that may pose a security risk.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

4308372

increased by18.22%

Dev dependency count

27

decreased by-3.57%

Number of package files

49

increased by6.52%

Lines of code

69713

increased by5.43%

Number of medium supply chain risk alerts

16

decreased by-5.88%

Worsened metrics

Number of low supply chain risk alerts

100

increased by1.01%

No dependency changes