@equinor/eds-tokens - npm Package Compare versions

Comparing version 0.5.3 to 0.5.4

CHANGELOG.md

@@ -8,2 +8,8 @@ # Changelog
 
+## [0.5.4] - 2020-12-11
+
+### Fixed
+
+- Removed postinstall script
+
 ## [0.5.3] - 2020-12-09
@@ -10,0 +16,0 @@

package.json

 {
   "name": "@equinor/eds-tokens",
-  "version": "0.5.3",
+  "version": "0.5.4",
   "description": "Design tokens for the Equinor Design System",
@@ -30,4 +30,3 @@ "main": "dist/tokens.cjs.js",
     "build": "rollup -c",
-    "dev": "rollup -c -w",
-    "postinstall": "pnpm run build"
+    "dev": "rollup -c -w"
   },
@@ -34,0 +33,0 @@ "keywords": [

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Install scripts

Supply chain risk

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

138003

increased by0.02%

Number of high supply chain risk alerts

0

decreased by-100%

Number of medium supply chain risk alerts

0

decreased by-100%

No dependency changes