@expo/fingerprint - npm Package Compare versions

Comparing version 1.0.0-canary-20240927-ab8a962 to 1.0.0-canary-20241008-90b13ad

build/Fingerprint.types.d.ts

@@ -82,3 +82,3 @@ /// <reference types="node" />
      * since expo-modules-autolinking will change the import style on iOS.
-     * @default true
+     * @default true for Expo SDK 51 and lower.
      */
@@ -85,0 +85,0 @@ enableReactImportsPatcher?: boolean;

build/Options.js

@@ -11,2 +11,3 @@ "use strict";
 const Config_1 = require("./Config");
+const ExpoVersions_1 = require("./ExpoVersions");
 const SourceSkips_1 = require("./sourcer/SourceSkips");
@@ -87,3 +88,2 @@ const Path_1 = require("./utils/Path");
         sourceSkips: exports.DEFAULT_SOURCE_SKIPS,
-        enableReactImportsPatcher: true,
         // Options from config
@@ -94,2 +94,6 @@ ...config,
         // These options are computed by both default and explicit options, so we put them last.
+        enableReactImportsPatcher: options?.enableReactImportsPatcher ??
+            config?.enableReactImportsPatcher ??
+            (0, ExpoVersions_1.satisfyExpoVersion)(projectRoot, '<52.0.0') ??
+            false,
         ignorePathMatchObjects: await collectIgnorePathsAsync(projectRoot, config?.ignorePaths, options),
@@ -96,0 +100,0 @@ };

build/sourcer/Sourcer.js

@@ -11,3 +11,3 @@ "use strict";
 const Expo_1 = require("./Expo");
-const ExpoVersions_1 = require("./ExpoVersions");
+const ExpoVersions_1 = require("../ExpoVersions");
 const Packages_1 = require("./Packages");
@@ -14,0 +14,0 @@ const PatchPackage_1 = require("./PatchPackage");

package.json

 {
   "name": "@expo/fingerprint",
-  "version": "1.0.0-canary-20240927-ab8a962",
+  "version": "1.0.0-canary-20241008-90b13ad",
   "description": "A library to generate a fingerprint from a React Native project",
@@ -55,3 +55,3 @@ "main": "build/index.js",
     "@types/find-up": "^4.0.0",
-    "expo-module-scripts": "3.6.0-canary-20240927-ab8a962",
+    "expo-module-scripts": "3.6.0-canary-20241008-90b13ad",
     "glob": "^10.4.2",
@@ -61,3 +61,3 @@ "require-from-string": "^2.0.2",
   },
-  "gitHead": "ab8a962d2c3dddbda124a6bd88d24475831dae00"
+  "gitHead": "90b13ad9d0dd3469556ac776d8b74643375b1d97"
 }

New alerts

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

158083

increased by1.54%

Lines of code

2332

increased by1.92%

Worsened metrics

Number of low supply chain risk alerts

20

increased by5.26%

No dependency changes