tuf-js - npm Package Compare versions

Comparing version 0.0.0 to 0.0.1-alpha.1

package.json

 {
   "name": "tuf-js",
-  "version": "0.0.0",
+  "version": "0.0.1-alpha.1",
   "description": "JavaScript implementation of The Update Framework (TUF)",
   "main": "dist/index.js",
+  "types": "dist/index.d.ts",
   "scripts": {
@@ -19,2 +20,5 @@ "build": "tsc",
   },
+  "files": [
+    "dist"
+  ],
   "keywords": [
@@ -35,3 +39,3 @@ "tuf"
     "@types/minimatch": "^5.1.2",
-    "@types/node": "^18.11.9",
+    "@types/node": "^18.11.10",
     "@typescript-eslint/eslint-plugin": "^5.45.0",
@@ -51,4 +55,4 @@ "@typescript-eslint/parser": "^5.45.0",
     "make-fetch-happen": "^11.0.1",
-    "minimatch": "^5.1.0"
+    "minimatch": "^5.1.1"
   }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 2 instances in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Mixed license

License

(Experimental) Package contains multiple licenses.

Found 1 instance in 1 package

Improved metrics

Number of low license alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

97753

decreased by-50.43%

Number of package files

55

decreased by-26.67%

Lines of code

2396

decreased by-55.55%

Number of low supply chain risk alerts

2

increased byInfinity%

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• Updatedminimatch@^5.1.1