webassemblyjs - npm Package Compare versions

Comparing version 1.0.0-y.3 to 1.0.0-y.4

package.json

 {
   "name": "webassemblyjs",
-  "version": "1.0.0-y.3",
+  "version": "1.0.0-y.4",
   "keywords": [
@@ -21,5 +21,5 @@ "webassembly",
   "dependencies": {
-    "@webassemblyjs/ast": "^1.0.0-y.3",
-    "@webassemblyjs/wasm-parser": "^1.0.0-y.3",
-    "@webassemblyjs/wast-parser": "^1.0.0-y.3",
+    "@webassemblyjs/ast": "^1.0.0-y.4",
+    "@webassemblyjs/wasm-parser": "^1.0.0-y.4",
+    "@webassemblyjs/wast-parser": "^1.0.0-y.4",
     "long": "^3.2.0",
@@ -26,0 +26,0 @@ "webassembly-floating-point-hex-parser": "0.1.2"

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

343597

increased by52.04%

Number of package files

160

increased by146.15%

Lines of code

8751

increased by33.56%

Worsened metrics

Number of low supply chain risk alerts

5

increased byInfinity%

Dependency changes

• Updated@webassemblyjs/ast@^1.0.0-y.4

• Updated@webassemblyjs/wasm-parser@^1.0.0-y.4

• Updated@webassemblyjs/wast-parser@^1.0.0-y.4