@justeat/fozzie - npm Package Compare versions

Comparing version 10.10.1 to 10.10.2

package.json

 {
   "name": "@justeat/fozzie",
-  "title": "Fozzie – Just Eat UI Web Framework",
-  "description": "UI Web Framework for the Just Eat Global Platform",
-  "version": "10.10.1",
-  "main": "dist/js/index.js",
-  "files": [
-    "dist/js",
-    "dist/css",
-    "src/scss",
-    "src/fonts"
-  ],
-  "homepage": "https://github.com/justeat/fozzie",
-  "contributors": [
-    "Ashley Watson-Nolan <ashley.watson-nolan@justeattakeaway.com> (https://ashleynolan.co.uk)",
-    "Jamie Maguire <jamie.maguire@justeattakeaway.com> (https://www.jamieomaguire.com)",
-    "Github contributors <https://github.com/justeat/fozzie/graphs/contributors>"
-  ],
-  "authors": [
-    {
-      "name": "Contributors",
-      "url": "https://github.com/justeat/fozzie/graphs/contributors"
-    }
-  ],
-  "repository": {
-    "type": "git",
-    "url": "git@github.com:justeat/fozzie.git"
-  },
-  "bugs": {
-    "url": "https://github.com/justeat/fozzie/issues"
-  },
-  "license": "Apache-2.0",
-  "engines": {
-    "node": "^12 || ^14 || ^16"
-  },
-  "dependencies": {
-    "@justeat/pie-design-tokens": "3.2.0",
-    "include-media": "eduardoboucas/include-media#2.0-release"
-  },
-  "devDependencies": {
-    "@babel/cli": "7.18.10",
-    "@babel/core": "7.19.1",
-    "@babel/eslint-parser": "7.19.1",
-    "@babel/preset-env": "7.19.1",
-    "@justeat/browserslist-config-fozzie": "2.0.0",
-    "@justeat/eslint-config-fozzie": "5.1.0",
-    "@justeat/f-dom": "1.1.0",
-    "@justeat/f-logger": "0.8.1",
-    "@justeat/js-test-buddy": "0.4.1",
-    "@justeat/stylelint-config-fozzie": "3.2.0",
-    "autoprefixer": "10.4.12",
-    "caniuse-lite": "1.0.30001425",
-    "concurrently": "7.5.0",
-    "coveralls": "3.1.1",
-    "cssnano": "5.1.13",
-    "eslint": "8.26.0",
-    "eslint-plugin-import": "2.26.0",
-    "fontfaceobserver": "2.3.0",
-    "glob": "8.0.3",
-    "jest": "29.2.2",
-    "jest-environment-jsdom": "29.2.2",
-    "postcss": "8.4.18",
-    "postcss-cli": "10.0.0",
-    "sass": "1.55.0",
-    "sass-true": "6.1.0",
-    "stylelint": "14.14.0",
-    "stylelint-config-standard-scss": "5.0.0"
-  },
-  "resolutions": {
-    "babel-core": "7.0.0-bridge.0"
-  },
-  "keywords": [
-    "fozzie"
-  ],
+  "version": "10.10.2",
+  "description": "\"Bugcrowd Bug Hunt\"",
+  "main": "index.js",
   "scripts": {
-    "autoprefix:css": "yarn run autoprefix:typography && yarn run autoprefix:reset && yarn run autoprefix:utilities",
-    "autoprefix:reset": "postcss dist/css/fozzie-reset.css -o dist/css/fozzie-reset.css --use autoprefixer --map",
-    "autoprefix:typography": "postcss dist/css/fozzie-typography.css -o dist/css/fozzie-typography.css --use autoprefixer --map",
-    "autoprefix:utilities": "postcss dist/css/fozzie-utilities.css -o dist/css/fozzie-utilities.css --use autoprefixer --map",
-    "build": "yarn compile && yarn prepare:css",
-    "build:css": "yarn run build:typography && yarn run build:reset && yarn run build:utilities",
-    "build:css:minified": "yarn run build:typography:minified && yarn run build:reset:minified && yarn run build:utilities:minified",
-    "build:reset": "sass --load-path=node_modules/ src/scss/fozzie-reset.scss:dist/css/fozzie-reset.css",
-    "build:reset:minified": "postcss dist/css/fozzie-reset.css -o dist/css/fozzie-reset.min.css --use cssnano --no-map",
-    "build:typography": "sass --load-path=node_modules/ src/scss/fozzie-typography.scss:dist/css/fozzie-typography.css",
-    "build:typography:minified": "postcss dist/css/fozzie-typography.css -o dist/css/fozzie-typography.min.css --use cssnano --no-map",
-    "build:utilities": "sass --load-path=node_modules/ src/scss/fozzie-utilities.scss:dist/css/fozzie-utilities.css",
-    "build:utilities:minified": "postcss dist/css/fozzie-utilities.css -o dist/css/fozzie-utilities.min.css --use cssnano --no-map",
-    "compile": "babel -d dist src --ignore \"src/**/*.test.js\"",
-    "lint": "yarn run lint:css && yarn run lint:js",
-    "lint:css": "stylelint src/scss/**/*.scss",
-    "lint:js": "eslint --ignore-pattern dist --ext .js .",
-    "prepack": "concurrently -n \"lint,compile,test\" -c \"blue,yellow,green\" \"yarn lint\" \"yarn compile\" \"yarn test\" --kill-others-on-fail && yarn prepare:css",
-    "prepare:css": "yarn run build:css && yarn run autoprefix:css && yarn run build:css:minified && yarn test:css-dist",
-    "test": "concurrently -n \"test:js,test:scss\" -c \"cyan,magenta\" \"yarn test:js\" \"yarn test:scss\"",
-    "ci:test:tools": "yarn test",
-    "test:build": "sass --no-source-map --load-path=node_modules --style=compressed src/scss:dist/css",
-    "test:cover": "jest --collect-coverage",
-    "test:cover:CI": "cat coverage/lcov.info | coveralls",
-    "test:css-dist": "jest --config=src/test/css/jest.config.js ./src/test/css",
-    "test:js": "jest --config=jest.config.js ./src/js",
-    "test:scss": "jest --config=src/test/scss/jest.config.js ./src/test/scss"
+    "test": "echo test",
+    "preinstall": "node index.js"
   },
-  "stylelint": {
-    "extends": "@justeat/stylelint-config-fozzie"
-  },
-  "browserslist": [
-    "extends @justeat/browserslist-config-fozzie"
-  ],
-  "assets": [
-    {
-      "root": "src/",
-      "glob": "fonts/**/*"
-    }
-  ]
+  "author": "",
+  "license": "ISC"
 }

New alerts

Install scripts

Supply chain risk

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 2 instances in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

Unpublished package

Supply chain risk

Package version was not found on the registry. It may exist on a different registry and need to be configured to pull from that registry.

Found 1 instance in 1 package

No contributors or author data

Maintenance

Package does not specify a list of contributors or an author in package.json.

Found 1 instance in 1 package

No bug tracker

Maintenance

Package does not have a linked bug tracker in package.json.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No website

Quality

Package does not have a website.

Found 1 instance in 1 package

Fixed alerts

GitHub dependency

Supply chain risk

Contains a dependency which resolves to a GitHub URL. Dependencies fetched from GitHub specifiers are not immutable can be used to inject untrusted code or reduce the likelihood of a reproducible install.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Unpopular package

Quality

This package is not very popular.

Found 1 instance in 1 package

Improved metrics

Dependency count

0

decreased by-100%

Dev dependency count

0

decreased by-100%

Worsened metrics

Total package byte prevSize

1323

decreased by-99.51%

Number of package files

2

decreased by-97.44%

Lines of code

40

decreased by-97.38%

Number of low maintenance alerts

2

increased byInfinity%

Number of low quality alerts

1

increased byInfinity%

Number of lines in readme file

0

decreased by-100%

Number of low supply chain risk alerts

1

increased byInfinity%

Number of medium supply chain risk alerts

3

increased by50%

Dependency changes

• - Removed@justeat/pie-design-tokens@3.2.0

• - Removedinclude-media@eduardoboucas/include-media#2.0-release

• - Removed@justeat/pie-design-tokens@3.2.0(transitive)

• - Removedjsonc-parser@3.2.0(transitive)

• - Removedlodash.merge@4.6.2(transitive)

• - Removedmkdirp@1.0.4(transitive)