nx
Advanced tools
Comparing version 10.0.7-beta.2 to 10.0.7-beta.3
{ | ||
"name": "nx", | ||
"version": "10.0.7-beta.2", | ||
"description": "", | ||
"version": "10.0.7-beta.3", | ||
"description": "Extensible Dev Tools for Monorepos", | ||
"repository": { | ||
@@ -20,5 +20,2 @@ "type": "git", | ||
], | ||
"bin": { | ||
"nx": "./bin/nx.js" | ||
}, | ||
"author": "Victor Savkin", | ||
@@ -31,8 +28,4 @@ "license": "MIT", | ||
"dependencies": { | ||
"tmp": "0.0.33", | ||
"yargs-parser": "10.0.0", | ||
"yargs": "^11.0.0", | ||
"@nrwl/tao": "10.0.7-beta.2", | ||
"chalk": "2.4.2" | ||
"@nrwl/cli": "*" | ||
} | ||
} |
Floating dependency
QualityPackage has a dependency with a floating version range. This can cause issues if the dependency publishes a new major version.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 6 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
1
0
1
12871
7
53
1
+ Added@nrwl/cli@*
+ Added@angular-devkit/architect@0.901.15(transitive)
+ Added@angular-devkit/core@9.1.15(transitive)
+ Added@angular-devkit/schematics@9.1.15(transitive)
+ Added@nrwl/cli@9999.0.0(transitive)
+ Added@nrwl/tao@9999.0.0(transitive)
+ Addedfast-levenshtein@2.0.6(transitive)
+ Addedora@4.0.3(transitive)
+ Addedrxjs@6.5.4(transitive)
- Removed@nrwl/tao@10.0.7-beta.2
- Removedchalk@2.4.2
- Removedtmp@0.0.33
- Removedyargs@^11.0.0
- Removedyargs-parser@10.0.0
- Removed@angular-devkit/architect@0.1000.8(transitive)
- Removed@angular-devkit/core@10.0.8(transitive)
- Removed@angular-devkit/schematics@10.0.8(transitive)
- Removed@nrwl/tao@10.0.7-beta.2(transitive)
- Removedora@4.0.4(transitive)
- Removedrxjs@6.5.5(transitive)