pouchdb-binary-utils - npm Package Compare versions

Comparing version 7.2.2 to 7.3.0

package.json

 {
   "name": "pouchdb-binary-utils",
-  "version": "7.2.2",
+  "version": "7.3.0",
   "description": "PouchDB utilities for operating on binary strings and Buffers/Blobs.",
@@ -9,3 +9,7 @@ "main": "./lib/index.js",
   "license": "Apache-2.0",
-  "repository": "https://github.com/pouchdb/pouchdb",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/pouchdb/pouchdb.git",
+    "directory": "packages/node_modules/pouchdb-binary-utils"
+  },
   "jsnext:main": "./lib/index.es.js",
@@ -17,3 +21,3 @@ "browser": {
   "dependencies": {
-    "buffer-from": "1.1.1"
+    "buffer-from": "1.1.2"
   },
@@ -20,0 +24,0 @@ "module": "./lib/index.es.js",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

26549

increased by0.39%

Number of low supply chain risk alerts

0

decreased by-100%

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Addedbuffer-from@1.1.2(transitive)

• - Removedbuffer-from@1.1.1(transitive)

• Updatedbuffer-from@1.1.2