oconf - npm Package Compare versions
Comparing version 0.0.2 to 0.0.3
@@ -5,3 +5,3 @@ { | ||
| "description": "Configuration", | ||
| "version": "0.0.2", | ||
| "version": "0.0.3", | ||
| "repository": { | ||
@@ -23,4 +23,4 @@ "type": "git", | ||
| "dependencies": { | ||
| "cjson": "*", | ||
| "optimist": "*" | ||
| "cjson": "= 0.0.6", | ||
| "optimist": "= 0.2.8" | ||
| }, | ||
@@ -27,0 +27,0 @@ "devDependencies": { |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Wildcard dependency
QualityPackage has a dependency with a floating version range. This can cause issues if the dependency publishes a new major version.
Found 2 instances in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.15%
8003
- Number of medium quality alerts
- decreased by-100%
0
- Number of medium supply chain risk alerts
- decreased by-100%
0
Dependency changes
- Removedcjson@0.5.0(transitive)
- Removedjju@1.4.0(transitive)
- Removedjson-parse-helpfulerror@1.0.3(transitive)
- Removedminimist@0.0.10(transitive)
- Removedoptimist@0.6.1(transitive)
- Removedwordwrap@0.0.3(transitive)
Updatedcjson@= 0.0.6
Updatedoptimist@= 0.2.8