New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
tyty - npm Package Compare versions
+1
-1
@@ -21,3 +21,3 @@ #!/usr/bin/env node | ||
| program | ||
| .version("3.4.2") | ||
| .version("3.5.2") | ||
| .option("-s, --save", "save as dependency") | ||
@@ -24,0 +24,0 @@ .option("-d, --save-dev", "(default) save as dev-dependency") |
+1
-1
| { | ||
| "name": "tyty", | ||
| "version": "3.5.1", | ||
| "version": "3.5.2", | ||
| "description": ":star2: A cli tool to get all of `@types/*` for your project dependencies. Happier with `typescript` :heart:", | ||
@@ -5,0 +5,0 @@ "main": "./dist/src/tyty.js", |
+1
-1
@@ -14,3 +14,3 @@ #!/usr/bin/env node | ||
| program | ||
| .version("3.4.2") | ||
| .version("3.5.2") | ||
| .option("-s, --save", "save as dependency") | ||
@@ -17,0 +17,0 @@ .option("-d, --save-dev", "(default) save as dev-dependency") |
New alerts
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
No metric changes
No dependency changes