read-installed - npm Package Compare versions

Comparing version 3.1.5 to 4.0.0

package.json

 {
   "name": "read-installed",
   "description": "Read all the installed packages in a folder, and return a tree structure with all the data.",
-  "version": "3.1.5",
+  "version": "4.0.0",
   "repository": {
@@ -15,3 +15,3 @@ "type": "git",
     "debuglog": "^1.0.1",
-    "read-package-json": "1",
+    "read-package-json": "^2.0.0",
     "readdir-scoped-modules": "^1.0.0",
@@ -18,0 +18,0 @@ "semver": "2 || 3 || 4",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

26359

increased by0.02%

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Addedfs.realpath@1.0.0(transitive)

• + Addedfunction-bind@1.1.2(transitive)

• + Addedglob@7.2.3(transitive)

• + Addedhasown@2.0.2(transitive)

• + Addedhosted-git-info@2.8.9(transitive)

• + Addedis-core-module@2.15.1(transitive)

• + Addedjson-parse-even-better-errors@2.3.1(transitive)

• + Addednormalize-package-data@2.5.0(transitive)

• + Addednpm-normalize-package-bin@1.0.1(transitive)

• + Addedpath-parse@1.0.7(transitive)

• + Addedread-package-json@2.1.2(transitive)

• + Addedresolve@1.22.8(transitive)

• + Addedspdx-correct@3.2.0(transitive)

• + Addedspdx-exceptions@2.5.0(transitive)

• + Addedspdx-expression-parse@3.0.1(transitive)

• + Addedspdx-license-ids@3.0.20(transitive)

• + Addedsupports-preserve-symlinks-flag@1.0.0(transitive)

• + Addedvalidate-npm-package-license@3.0.4(transitive)

• - Removedgithub-url-from-git@1.5.0(transitive)

• - Removedgithub-url-from-username-repo@1.0.2(transitive)

• - Removedglob@5.0.15(transitive)

• - Removedjju@1.4.0(transitive)

• - Removedjson-parse-helpfulerror@1.0.3(transitive)

• - Removednormalize-package-data@1.0.3(transitive)

• - Removedread-package-json@1.3.3(transitive)

• Updatedread-package-json@^2.0.0