@jsiebern/bs-material-ui-ppx - npm Package Compare versions

Comparing version 1.0.4 to 1.0.5-workflowtest.9

package.json

 {
-    "name": "@jsiebern/bs-material-ui-ppx",
-    "repository": {
-        "url": "jsiebern/reason-mui-withstyles-ppx",
-        "type": "git"
-    },
-    "private": false,
-    "homepage": "https://github.com/jsiebern/reason-mui-withstyles-ppx",
-    "bugs": "https://github.com/jsiebern/reason-mui-withstyles-ppx/issues",
-    "version": "1.0.4",
-    "author": "Jonathan Siebern <jsiebern88@gmail.com>",
-    "license": "MIT",
-    "scripts": {
-        "build": "bsb -make-world -backend native && cp ./lib/bs/native/ppx_withstyles.native ./ppx",
-        "postinstall": "bsb -make-world -backend native && cp ./lib/bs/native/ppx_withstyles.native ./ppx",
-        "clean": "bsb -clean-world",
-        "watch": "bsb -make-world -backend native -w"
-    },
-    "keywords": [
-        "Reason"
-    ],
-    "description": "This is a ppx for using the withStyles component in @jsiebern/bs-material-ui",
-    "dependencies": {
-        "bsb-native": "^4.0.9",
-        "yauzl": "^2.10.0"
-    }
+	"name": "@jsiebern/bs-material-ui-ppx",
+	"repository": {
+		"url": "jsiebern/reason-mui-withstyles-ppx",
+		"type": "git"
+	},
+	"private": false,
+	"homepage": "https://github.com/jsiebern/reason-mui-withstyles-ppx",
+	"bugs": "https://github.com/jsiebern/reason-mui-withstyles-ppx/issues",
+	"version": "1.0.5-workflowtest.9",
+	"author": "Jonathan Siebern <jsiebern88@gmail.com>",
+	"license": "MIT",
+	"scripts": {
+		"postinstall": "node ./copyPlatformBinaryInPlace.js"
+	},
+	"keywords": [ "Reason" ],
+	"description": "This is a ppx for using the withStyles component in @jsiebern/bs-material-ui",
+	"dependencies": {},
+	"devDependencies": {},
+	"publishConfig": {
+		"access": "public"
+	}
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Install scripts

Supply chain risk

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Found 1 instance in 1 package

Native code

Supply chain risk

Contains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.

Found 6 instances in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Install scripts

Supply chain risk

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

76770500

increased by413177.89%

Dependency count

0

decreased by-100%

Number of package files

21

increased by40%

Lines of code

1341

increased by6285.71%

Worsened metrics

Number of low quality alerts

1

increased byInfinity%

Number of low supply chain risk alerts

3

increased byInfinity%

Number of medium supply chain risk alerts

7

increased byInfinity%

Dependency changes

• - Removedbsb-native@^4.0.9

• - Removedyauzl@^2.10.0

• - Removedbsb-native@4.0.7000(transitive)

• - Removedbuffer-crc32@0.2.13(transitive)

• - Removedfd-slicer@1.1.0(transitive)

• - Removedpend@1.2.0(transitive)

• - Removedyauzl@2.10.0(transitive)