pacote - npm Package Compare versions
Comparing version 11.3.2 to 11.3.3
@@ -6,2 +6,3 @@ const Fetcher = require('./fetcher.js') | ||
| const npa = require('npm-package-arg') | ||
| const rpj = require('read-package-json-fast') | ||
| const pickManifest = require('npm-pick-manifest') | ||
@@ -160,3 +161,4 @@ const ssri = require('ssri') | ||
| mani._integrity = String(this.integrity) | ||
| return this.package = mani | ||
| this.package = rpj.normalize(mani) | ||
| return this.package | ||
| }) | ||
@@ -163,0 +165,0 @@ } |
| { | ||
| "name": "pacote", | ||
| "version": "11.3.2", | ||
| "version": "11.3.3", | ||
| "description": "JavaScript package downloader", | ||
@@ -5,0 +5,0 @@ "author": "Isaac Z. Schlueter <i@izs.me> (https://izs.me)", |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.13%
65032
- Lines of code
- increased by0.15%
1365
Worsened metrics
- Number of medium supply chain risk alerts
- increased by33.33%
4