@module-federation/webpack-bundler-runtime - npm Package Compare versions

Comparing version 0.0.0-next-20240830100524 to 0.0.0-next-20240902023803

dist/index.cjs.js

@@ -174,5 +174,8 @@ 'use strict';
     if (!initScope) initScope = [];
+    var mfInstance = webpackRequire.federation.instance;
     // handling circular init calls
     var initToken = initTokens[shareScopeName];
-    if (!initToken) initToken = initTokens[shareScopeName] = {};
+    if (!initToken) initToken = initTokens[shareScopeName] = {
+        from: mfInstance.name
+    };
     if (initScope.indexOf(initToken) >= 0) return;
@@ -205,3 +208,7 @@ initScope.push(initToken);
     };
-    var promises = webpackRequire.federation.instance.initializeSharing(shareScopeName);
+    var promises = mfInstance.initializeSharing(shareScopeName, {
+        strategy: mfInstance.options.shareStrategy,
+        initScope: initScope,
+        from: 'build'
+    });
     attachShareScopeMap(webpackRequire);
@@ -208,0 +215,0 @@ var bundlerRuntimeRemotesOptions = webpackRequire.federation.bundlerRuntimeOptions.remotes;

dist/index.esm.js

@@ -152,5 +152,8 @@ import * as runtime from '@module-federation/runtime';
     if (!initScope) initScope = [];
+    var mfInstance = webpackRequire.federation.instance;
     // handling circular init calls
     var initToken = initTokens[shareScopeName];
-    if (!initToken) initToken = initTokens[shareScopeName] = {};
+    if (!initToken) initToken = initTokens[shareScopeName] = {
+        from: mfInstance.name
+    };
     if (initScope.indexOf(initToken) >= 0) return;
@@ -183,3 +186,7 @@ initScope.push(initToken);
     };
-    var promises = webpackRequire.federation.instance.initializeSharing(shareScopeName);
+    var promises = mfInstance.initializeSharing(shareScopeName, {
+        strategy: mfInstance.options.shareStrategy,
+        initScope: initScope,
+        from: 'build'
+    });
     attachShareScopeMap(webpackRequire);
@@ -186,0 +193,0 @@ var bundlerRuntimeRemotesOptions = webpackRequire.federation.bundlerRuntimeOptions.remotes;

dist/package.json

 {
   "public": true,
   "name": "@module-federation/webpack-bundler-runtime",
-  "version": "0.5.1",
+  "version": "0.6.0",
   "license": "MIT",
@@ -39,2 +39,6 @@ "description": "Module Federation Runtime for webpack",
     },
+    "./vendor": {
+      "import": "./dist/vendored.esm.js",
+      "require": "./dist/vendored.cjs.js"
+    },
     "./*": "./*"
@@ -53,4 +57,7 @@ },
   "devDependencies": {
-    "@module-federation/runtime": "workspace:*"
+    "@module-federation/runtime": "workspace:*",
+    "@rollup/plugin-swc": "^0.3.1",
+    "rollup-plugin-cleanup": "^3.2.1",
+    "rollup": "4.21.0"
   }
 }

package.json

 {
   "public": true,
   "name": "@module-federation/webpack-bundler-runtime",
-  "version": "0.0.0-next-20240830100524",
+  "version": "0.0.0-next-20240902023803",
   "license": "MIT",
@@ -23,4 +23,4 @@ "description": "Module Federation Runtime for webpack",
   "dependencies": {
-    "@module-federation/runtime": "0.0.0-next-20240830100524",
-    "@module-federation/sdk": "0.0.0-next-20240830100524"
+    "@module-federation/runtime": "0.0.0-next-20240902023803",
+    "@module-federation/sdk": "0.0.0-next-20240902023803"
   },
@@ -40,2 +40,6 @@ "exports": {
     },
+    "./vendor": {
+      "import": "./dist/vendored.esm.js",
+      "require": "./dist/vendored.cjs.js"
+    },
     "./*": "./*"
@@ -54,4 +58,7 @@ },
   "devDependencies": {
-    "@module-federation/runtime": "0.0.0-next-20240830100524"
+    "@rollup/plugin-swc": "^0.3.1",
+    "rollup-plugin-cleanup": "^3.2.1",
+    "rollup": "4.21.0",
+    "@module-federation/runtime": "0.0.0-next-20240902023803"
   }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses eval() which is a dangerous function. This prevents the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 2 instances in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 2 instances in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

565611

increased by759.62%

Number of package files

27

increased by12.5%

Lines of code

13323

increased by792.36%

Worsened metrics

Dev dependency count

4

increased by300%

Number of low supply chain risk alerts

10

increased by900%

Number of medium supply chain risk alerts

39

increased by1850%

Dependency changes

• + Added@module-federation/runtime@0.0.0-next-20240902023803(transitive)

• + Added@module-federation/sdk@0.0.0-next-20240902023803(transitive)

• - Removed@module-federation/runtime@0.0.0-next-20240830100524(transitive)

• - Removed@module-federation/sdk@0.0.0-next-20240830100524(transitive)

• Updated@module-federation/runtime@0.0.0-next-20240902023803

• Updated@module-federation/sdk@0.0.0-next-20240902023803