@babel/core - npm Package Compare versions

Comparing version 7.28.3 to 7.28.4

lib/index.js

@@ -215,3 +215,3 @@ "use strict";
 ;
-const version = exports.version = "7.28.3";
+const version = exports.version = "7.28.4";
 const resolvePlugin = (name, dirname) => resolvers.resolvePlugin(name, dirname, false).filepath;
@@ -218,0 +218,0 @@ exports.resolvePlugin = resolvePlugin;

lib/transformation/file/merge-map.js

@@ -8,3 +8,3 @@ "use strict";
 function _remapping() {
-  const data = require("@ampproject/remapping");
+  const data = require("@jridgewell/remapping");
   _remapping = function () {
@@ -11,0 +11,0 @@ return data;

lib/transformation/normalize-opts.js

@@ -43,3 +43,3 @@ "use strict";
       minified: opts.minified,
-      sourceMaps,
+      sourceMaps: !!sourceMaps,
       sourceRoot,
@@ -46,0 +46,0 @@ sourceFileName

package.json

 {
   "name": "@babel/core",
-  "version": "7.28.3",
+  "version": "7.28.4",
   "description": "Babel compiler core.",
@@ -49,3 +49,2 @@ "main": "./lib/index.js",
   "dependencies": {
-    "@ampproject/remapping": "^2.2.0",
     "@babel/code-frame": "^7.27.1",
@@ -55,7 +54,8 @@ "@babel/generator": "^7.28.3",
     "@babel/helper-module-transforms": "^7.28.3",
-    "@babel/helpers": "^7.28.3",
-    "@babel/parser": "^7.28.3",
+    "@babel/helpers": "^7.28.4",
+    "@babel/parser": "^7.28.4",
     "@babel/template": "^7.27.2",
-    "@babel/traverse": "^7.28.3",
-    "@babel/types": "^7.28.2",
+    "@babel/traverse": "^7.28.4",
+    "@babel/types": "^7.28.4",
+    "@jridgewell/remapping": "^2.3.5",
     "convert-source-map": "^2.0.0",
@@ -62,0 +62,0 @@ "debug": "^4.1.0",

New alerts

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 2 instances in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Fixed alerts

Debug access

Supply chain risk

Uses debug, reflection and dynamic code execution features.

Found 2 instances in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

798250

0.29%

Dependency changes

• + Added

  @jridgewell/remapping@^2.3.5

• + Added

  @jridgewell/remapping@2.3.5
  (transitive)

• - Removed

  @ampproject/remapping@^2.2.0

• - Removed

  @ampproject/remapping@2.3.0
  (transitive)

• Updated

  @babel/helpers@^7.28.4

• Updated

  @babel/parser@^7.28.4

• Updated

  @babel/traverse@^7.28.4

• Updated

  @babel/types@^7.28.4