set-value - npm Package Compare versions
Comparing version 2.0.0 to 2.0.1
@@ -28,3 +28,3 @@ /*! | ||
| var keys = split(prop, {sep: '.', brackets: true}); | ||
| var keys = split(prop, {sep: '.', brackets: true}).filter(isValidKey); | ||
| var len = keys.length; | ||
@@ -53,1 +53,5 @@ var idx = -1; | ||
| }; | ||
| function isValidKey(key) { | ||
| return key !== '__proto__' && key !== 'constructor' && key !== 'prototype'; | ||
| } |
| { | ||
| "name": "set-value", | ||
| "description": "Create nested values and any intermediaries using dot notation (`'a.b.c'`) paths.", | ||
| "version": "2.0.0", | ||
| "version": "2.0.1", | ||
| "homepage": "https://github.com/jonschlinkert/set-value", | ||
@@ -6,0 +6,0 @@ "author": "Jon Schlinkert (https://github.com/jonschlinkert)", |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Deprecated
MaintenanceThe maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by1.25%
10322
- Lines of code
- increased by7.14%
45
- Number of medium maintenance alerts
- decreased by-100%
0
Worsened metrics
- Number of medium supply chain risk alerts
- increased byInfinity%
1