Comparing version 7.0.0 to 7.0.1
@@ -5,2 +5,4 @@ # Changelog | ||
### [7.0.1](https://github.com/npm/ssri/compare/v7.0.0...v7.0.1) (2019-09-30) | ||
## [7.0.0](https://github.com/npm/ssri/compare/v6.0.1...v7.0.0) (2019-09-18) | ||
@@ -7,0 +9,0 @@ |
{ | ||
"name": "ssri", | ||
"version": "7.0.0", | ||
"version": "7.0.1", | ||
"description": "Standard Subresource Integrity library -- parses, serializes, generates, and verifies integrity metadata according to the SRI spec.", | ||
@@ -41,3 +41,3 @@ "main": "index.js", | ||
"figgy-pudding": "^3.5.1", | ||
"minipass": "^2.5.1" | ||
"minipass": "^3.0.0" | ||
}, | ||
@@ -47,3 +47,3 @@ "devDependencies": { | ||
"standard-version": "^7.0.0", | ||
"tap": "^14.6.4", | ||
"tap": "^14.6.9", | ||
"weallbehave": "^1.2.0", | ||
@@ -54,3 +54,6 @@ "weallcontribute": "^1.0.8" | ||
"check-coverage": true | ||
}, | ||
"engines": { | ||
"node": ">= 8" | ||
} | ||
} |
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
43069
0
+ Addedminipass@3.3.6(transitive)
+ Addedyallist@4.0.0(transitive)
- Removedminipass@2.9.0(transitive)
- Removedsafe-buffer@5.2.1(transitive)
- Removedyallist@3.1.1(transitive)
Updatedminipass@^3.0.0