New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
react-dropdown-aria
Advanced tools
react-dropdown-aria - npm Package Compare versions
Comparing version 1.1.3 to 1.2.0
| { | ||
| "name": "react-dropdown-aria", | ||
| "version": "1.1.3", | ||
| "version": "1.2.0", | ||
| "description": "Simple and accessible React dropdown component", | ||
| "main": "index.js", | ||
| "main": "dist/index.js", | ||
| "module": "dist/index.es.js", | ||
| "scripts": { | ||
@@ -10,3 +11,3 @@ "dev": "concurrently \"npm run lib:dev\" \"npm run demo:dev\"", | ||
| "lib:dev": "rollup -c -w -o dist/react-dropdown-aria.dev.js", | ||
| "lib:prod": " SET NODE_ENV=production && rollup -c -o dist/react-dropdown-aria.min.js", | ||
| "lib:prod": "SET NODE_ENV=production && rollup -c", | ||
| "demo:dev": "webpack-dev-server --mode development --open --hot", | ||
@@ -72,3 +73,2 @@ "demo:prod": "webpack --mode production", | ||
| "rollup-plugin-buble": "^0.19.2", | ||
| "rollup-plugin-commonjs": "^9.1.5", | ||
| "rollup-plugin-node-resolve": "^3.3.0", | ||
@@ -75,0 +75,0 @@ "rollup-plugin-uglify": "^4.0.0", |
New alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Fixed alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Improved metrics
- Dev dependency count
- decreased by-2.38%
41
- Number of low supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Total package byte prevSize
- decreased by-0.03%
43512
- Number of package files
- decreased by-16.67%
5
- Lines of code
- decreased by-0.39%
1011
- Number of medium supply chain risk alerts
- increased byInfinity%
1
No dependency changes