victory-vendor
Advanced tools
Comparing version 36.8.4 to 36.8.5-next.0
# victory-vendor | ||
## 36.8.5-next.0 | ||
### Patch Changes | ||
- c8c2eb2f5: Replace instances of lodash.assign with Object.assign | ||
## 36.8.4 | ||
@@ -4,0 +10,0 @@ |
{ | ||
"name": "victory-vendor", | ||
"version": "36.8.4", | ||
"version": "36.8.5-next.0", | ||
"description": "Vendored dependencies for Victory", | ||
@@ -53,3 +53,3 @@ "keywords": [ | ||
"publishConfig": { | ||
"provenance": true | ||
"provenance": false | ||
}, | ||
@@ -56,0 +56,0 @@ "wireit": { |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
406276
1
1