New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@alchemycodelab/create-app
Advanced tools
@alchemycodelab/create-app - npm Package Compare versions
Comparing version 3.3.0 to 4.0.0
@@ -25,2 +25,3 @@ const path = require('path'); | ||
| 'css-loader', | ||
| 'dotenv', | ||
| 'eslint', | ||
@@ -30,3 +31,2 @@ 'eslint-plugin-babel', | ||
| 'file-loader', | ||
| 'git://github.com/mehtaphysical/dotenv-webpack#master', | ||
| 'html-webpack-plugin@next', | ||
@@ -33,0 +33,0 @@ 'identity-obj-proxy', |
| { | ||
| "name": "@alchemycodelab/create-app", | ||
| "version": "3.3.0", | ||
| "version": "4.0.0", | ||
| "description": "", | ||
@@ -5,0 +5,0 @@ "repository": { |
| /* eslint-disable no-undef */ | ||
| const webpack = require('webpack'); | ||
| const path = require('path'); | ||
| const HtmlPlugin = require('html-webpack-plugin'); | ||
| const { CleanWebpackPlugin } = require('clean-webpack-plugin'); | ||
| const Dotenv = require('dotenv-webpack'); | ||
| const CopyPlugin = require('copy-webpack-plugin'); | ||
| const env = Object.entries({ ...require('dotenv').config(), ...process.env }) | ||
| .reduce((acc, [key, value]) => { | ||
| acc[`process.env.${key}`] = value; | ||
| return acc; | ||
| }, {}); | ||
| // eslint-disable-next-line | ||
@@ -23,5 +29,3 @@ module.exports = { | ||
| new CleanWebpackPlugin(), | ||
| new Dotenv({ | ||
| systemvars: true | ||
| }), | ||
| new webpack.EnvironmentPlugin(env), | ||
| new CopyPlugin({ | ||
@@ -28,0 +32,0 @@ patterns: [ |
Sorry, the diff of this file is not supported yet
New alerts
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.77%
20790
- Lines of code
- increased by0.81%
375
Worsened metrics
- Number of low supply chain risk alerts
- increased by14.29%
8
No dependency changes