read-package-json - npm Package Compare versions

Comparing version 6.0.1 to 6.0.2

lib/read-json.js

@@ -5,3 +5,3 @@ var fs = require('fs')
 
-var glob = require('glob')
+var { glob } = require('glob')
 var normalizeData = require('normalize-package-data')
@@ -8,0 +8,0 @@ var safeJSON = require('json-parse-even-better-errors')

package.json

 {
   "name": "read-package-json",
-  "version": "6.0.1",
+  "version": "6.0.2",
   "author": "GitHub Inc.",
@@ -26,3 +26,3 @@ "description": "The thing npm uses to read package.json files with semantics and defaults and validation",
   "dependencies": {
-    "glob": "^9.3.0",
+    "glob": "^10.2.2",
     "json-parse-even-better-errors": "^3.0.0",
@@ -34,3 +34,3 @@ "normalize-package-data": "^5.0.0",
     "@npmcli/eslint-config": "^4.0.0",
-    "@npmcli/template-oss": "4.12.0",
+    "@npmcli/template-oss": "4.14.1",
     "tap": "^16.0.1"
@@ -58,4 +58,5 @@ },
     "//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
-    "version": "4.12.0"
+    "version": "4.14.1",
+    "publish": "true"
   }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

20562

increased by0.14%

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Added@isaacs/cliui@8.0.2(transitive)

• + Added@pkgjs/parseargs@0.11.0(transitive)

• + Addedansi-regex@5.0.16.1.0(transitive)

• + Addedansi-styles@4.3.06.2.1(transitive)

• + Addedcolor-convert@2.0.1(transitive)

• + Addedcolor-name@1.1.4(transitive)

• + Addedcross-spawn@7.0.3(transitive)

• + Addedeastasianwidth@0.2.0(transitive)

• + Addedemoji-regex@8.0.09.2.2(transitive)

• + Addedforeground-child@3.3.0(transitive)

• + Addedglob@10.4.5(transitive)

• + Addedis-fullwidth-code-point@3.0.0(transitive)

• + Addedisexe@2.0.0(transitive)

• + Addedjackspeak@3.4.3(transitive)

• + Addedminimatch@9.0.5(transitive)

• + Addedpackage-json-from-dist@1.0.1(transitive)

• + Addedpath-key@3.1.1(transitive)

• + Addedshebang-command@2.0.0(transitive)

• + Addedshebang-regex@3.0.0(transitive)

• + Addedsignal-exit@4.1.0(transitive)

• + Addedstring-width@4.2.35.1.2(transitive)

• + Addedstrip-ansi@6.0.17.1.0(transitive)

• + Addedwhich@2.0.2(transitive)

• + Addedwrap-ansi@7.0.08.1.0(transitive)

• - Removedfs.realpath@1.0.0(transitive)

• - Removedglob@9.3.5(transitive)

• - Removedminimatch@8.0.4(transitive)

• - Removedminipass@4.2.8(transitive)

• Updatedglob@^10.2.2