New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
pasteup - npm Package Compare versions
Comparing version 0.0.1-alpha.2 to 0.0.1-alpha.3
| { | ||
| "name": "pasteup", | ||
| "version": "0.0.1-alpha.2", | ||
| "version": "0.0.1-alpha.3", | ||
| "description": "Sass and CSS helpers for common styles in use on the Guardian website.", | ||
@@ -11,3 +11,14 @@ "main": "pasteup.css", | ||
| ], | ||
| "license": "Apache-2.0" | ||
| "license": "Apache-2.0", | ||
| "devDependencies": { | ||
| "chalk": "^1.1.3", | ||
| "home-dir": "^1.0.0", | ||
| "inquirer": "^0.12.0", | ||
| "java-properties": "^0.2.9", | ||
| "lodash.template": "^4.2.4" | ||
| }, | ||
| "scripts": { | ||
| "prepublish": "node .npm/prepublish.js", | ||
| "postpublish": "node .npm/postpublish.js" | ||
| } | ||
| } |
New alerts
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by308.42%
1164
- Number of package files
- increased by100%
4
- Lines of code
- increased byInfinity%
13
- Number of medium supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Dev dependency count
- increased byInfinity%
5
- Number of low supply chain risk alerts
- increased by100%
2
No dependency changes