Comparing version 0.0.0 to 0.0.1
{ | ||
"name": "valtio", | ||
"version": "0.0.0", | ||
"private": false, | ||
"version": "0.0.1", | ||
"description": "", | ||
"main": "index.js", | ||
"scripts": { | ||
"test": "echo \"Error: no test specified\" && exit 1" | ||
"main": "index.cjs.js", | ||
"module": "index.js", | ||
"types": "index.d.ts", | ||
"files": [ | ||
"**" | ||
], | ||
"sideEffects": false, | ||
"repository": { | ||
"type": "git", | ||
"url": "git+https://github.com/pmndrs/valtio.git" | ||
}, | ||
"keywords": [ | ||
"react", | ||
"state", | ||
"manager", | ||
"management", | ||
"mobx", | ||
"proxy", | ||
"store" | ||
], | ||
"author": "Daishi Kato", | ||
"license": "MIT" | ||
"contributors": [], | ||
"license": "MIT", | ||
"bugs": { | ||
"url": "https://github.com/pmndrs/valtio/issues" | ||
}, | ||
"homepage": "https://github.com/pmndrs/valtio", | ||
"dependencies": { | ||
"proxy-compare": "1.0.3", | ||
"use-subscription": "1.5.1" | ||
}, | ||
"peerDependencies": { | ||
"react": ">=16.8" | ||
} | ||
} |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
No README
QualityPackage does not have a README. This may indicate a failed publish or a low quality package.
Found 1 instance in 1 package
No bug tracker
MaintenancePackage does not have a linked bug tracker in package.json.
Found 1 instance in 1 package
No repository
Supply chain riskPackage does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.
Found 1 instance in 1 package
No tests
QualityPackage does not have any tests. This is a strong signal of a poorly maintained or low quality package.
Found 1 instance in 1 package
No website
QualityPackage does not have a website.
Found 1 instance in 1 package
16874
8
430
0
1
0
31
0
3
2
+ Addedproxy-compare@1.0.3
+ Addeduse-subscription@1.5.1
+ Addedjs-tokens@4.0.0(transitive)
+ Addedloose-envify@1.4.0(transitive)
+ Addedobject-assign@4.1.1(transitive)
+ Addedproxy-compare@1.0.3(transitive)
+ Addedreact@17.0.218.3.1(transitive)
+ Addeduse-subscription@1.5.1(transitive)