sdp - npm Package Compare versions

Comparing version 0.0.1 to 0.0.2

package.json

 {
     "name": "sdp",
-    "version": "0.0.1",
+    "version": "0.0.2",
     "description": "A parser/serializer for SDP to JSON. Useful for converting SDP to other formats like Jingle for WebRTC signalling",
@@ -19,4 +19,3 @@ "main": "sdp.js",
     "dependencies": {
-        "foreach": "",
-        "array-filter": ""
+        "lodash": "1.3.1"
     },
@@ -23,0 +22,0 @@ "devDependencies": {

sdp.js

@@ -1,3 +0,4 @@
-var each = require('foreach'); 
-var filter = require('array-filter');
+var _ = require('lodash');
+var each = _.each;
+var filter = _.filter;
 
@@ -4,0 +5,0 @@

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Wildcard dependency

Quality

Package has a dependency with a floating version range. This can cause issues if the dependency publishes a new major version.

Found 2 instances in 1 package

Improved metrics

Total package byte prevSize

229442

increased by439.09%

Dependency count

1

decreased by-50%

Lines of code

6351

increased by443.28%

Number of medium quality alerts

0

decreased by-100%

Worsened metrics

Number of medium supply chain risk alerts

2

increased byInfinity%

Dependency changes

• + Addedlodash@1.3.1

• + Addedlodash@1.3.1(transitive)

• - Removedarray-filter@

• - Removedforeach@

• - Removedarray-filter@1.0.0(transitive)

• - Removedforeach@2.0.6(transitive)