sails-stdlib - npm Package Compare versions

Comparing version 0.3.9 to 0.3.10

package.json

 {
   "name": "sails-stdlib",
-  "version": "0.3.9",
+  "version": "0.3.10",
   "description": "Standard library for Node/Sails applications. Hand-picked and maintained by the Sails.js core team.",
@@ -40,5 +40,5 @@ "scripts": {
     "machinepack-process": "git://github.com/treelinehq/machinepack-process.git#cc09980b4f04d88b229085aecc3fa75d7d5d5c23",
-    "machinepack-reqres": "git://github.com/treelinehq/machinepack-reqres.git#24b33f3ef0fc8f1f206c3831449d379b75220bd0",
-    "machinepack-sessionauth": "git://github.com/treelinehq/machinepack-sessionauth.git#69b23bf43b0b665cceeb533d547735d3751c797d",
-    "machinepack-sockets": "git://github.com/sgress454/machinepack-sockets.git#3352e26e7a10283563db1aa8fdb59ba6478a1a42",
+    "machinepack-reqres": "git://github.com/treelinehq/machinepack-reqres.git#a9f644c549b0a927f05c1ac0c76ec5edbe2fb17b",
+    "machinepack-sessionauth": "git://github.com/treelinehq/machinepack-sessionauth.git#e33e819ede3654293e27ec7823db0778bf75027a",
+    "machinepack-sockets": "git://github.com/sgress454/machinepack-sockets.git#75a6583a8107814595af78558672122ad91ed371",
     "machinepack-strings": "git://github.com/treelinehq/machinepack-strings.git#c4ad6fbf32ad579acefcdab1cabf72622068d6f1",
@@ -45,0 +45,0 @@ "machinepack-urls": "git://github.com/mikermcneil/machinepack-urls.git#4cc9393c7e46b51e57066d31b3e1edc12fec372a",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Git dependency

Supply chain risk

Contains a dependency which resolves to a remote git URL. Dependencies fetched from git URLs are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 3 instances in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Git dependency

Supply chain risk

Contains a dependency which resolves to a remote git URL. Dependencies fetched from git URLs are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 3 instances in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

8971

increased by0.01%

Number of medium supply chain risk alerts

0

decreased by-100%

Dependency changes

• Updatedmachinepack-reqres@git://github.com/treelinehq/machinepack-reqres.git#a9f644c549b0a927f05c1ac0c76ec5edbe2fb17b

• Updatedmachinepack-sessionauth@git://github.com/treelinehq/machinepack-sessionauth.git#e33e819ede3654293e27ec7823db0778bf75027a

• Updatedmachinepack-sockets@git://github.com/sgress454/machinepack-sockets.git#75a6583a8107814595af78558672122ad91ed371