svix - npm Package Compare versions

Comparing version 0.41.1 to 0.41.2

dist/index.js

@@ -21,3 +21,3 @@ "use strict";
 const WEBHOOK_TOLERANCE_IN_SECONDS = 5 * 60;
-const VERSION = "0.41.1";
+const VERSION = "0.41.2";
 class UserAgentMiddleware {
@@ -24,0 +24,0 @@ pre(context) {

package.json

 {
   "name": "svix",
-  "version": "0.41.1",
+  "version": "0.41.2",
   "description": "Svix API client",
@@ -35,3 +35,3 @@ "author": "svix",
     "fast-sha256": "^1.3.0",
-    "isomorphic-fetch": "^3.0.0",
+    "isomorphic-fetch": "https://github.com/svix-frank/isomorphic-fetch.git#fa230b6d27d2d6de1861d4edef58ca116eff38bf",
     "url-parse": "^1.4.3"
@@ -38,0 +38,0 @@ },

New alerts

HTTP dependency

Supply chain risk

Contains a dependency which resolves to a remote HTTP URL which could be used to inject untrusted code and reduce overall package reliability.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

694834

increased by0.01%

Worsened metrics

Number of high supply chain risk alerts

1

increased byInfinity%

Dependency changes

• - Removedisomorphic-fetch@3.0.0(transitive)

• - Removednode-fetch@2.7.0(transitive)

• - Removedtr46@0.0.3(transitive)

• - Removedwebidl-conversions@3.0.1(transitive)

• - Removedwhatwg-fetch@3.6.20(transitive)

• - Removedwhatwg-url@5.0.0(transitive)

• Updatedisomorphic-fetch@https://github.com/svix-frank/isomorphic-fetch.git#fa230b6d27d2d6de1861d4edef58ca116eff38bf