@npmcli/arborist - npm Package Compare versions

Comparing version 5.0.4 to 5.0.5

lib/retire-path.js

@@ -10,3 +10,3 @@ const crypto = require('crypto')
     .replace(/[^a-zA-Z0-9]+/g, '')
-    .substr(0, 8)
+    .slice(0, 8)
 
@@ -13,0 +13,0 @@ const retirePath = from => {

lib/shrinkwrap.js

@@ -810,3 +810,3 @@ // a module that manages a shrinkwrap file (npm-shrinkwrap.json or
         // resolve onto the metadata path
-        : `file:${resolve(this.path, resolved.substr(5))}`
+        : `file:${resolve(this.path, resolved.slice(5))}`
 
@@ -1060,3 +1060,3 @@ // if we have one, only set the other if it matches
             // node is also a workspace in the set.
-            const p = resolve(node.realpath, spec.substr('file:'.length))
+            const p = resolve(node.realpath, spec.slice('file:'.length))
             set[k] = `file:${relpath(node.realpath, p)}`
@@ -1063,0 +1063,0 @@ } else {

lib/version-from-tgz.js

@@ -19,3 +19,3 @@ /* eslint node/no-deprecated-api: "off" */
     // is a potential option.
-    const tfsplit = u.path.substr(1).split('/-/')
+    const tfsplit = u.path.slice(1).split('/-/')
     if (tfsplit.length > 1) {
@@ -22,0 +22,0 @@ const afterTF = tfsplit.pop()

package.json

 {
   "name": "@npmcli/arborist",
-  "version": "5.0.4",
+  "version": "5.0.5",
   "description": "Manage node_modules trees",
@@ -10,6 +10,6 @@ "dependencies": {
     "@npmcli/metavuln-calculator": "^3.0.1",
-    "@npmcli/move-file": "^1.1.0",
+    "@npmcli/move-file": "^2.0.0",
     "@npmcli/name-from-folder": "^1.0.1",
-    "@npmcli/node-gyp": "^1.0.3",
-    "@npmcli/package-json": "^1.0.1",
+    "@npmcli/node-gyp": "^2.0.0",
+    "@npmcli/package-json": "^2.0.0",
     "@npmcli/run-script": "^3.0.0",
@@ -24,3 +24,3 @@ "bin-links": "^3.0.0",
     "nopt": "^5.0.0",
-    "npm-install-checks": "^4.0.0",
+    "npm-install-checks": "^5.0.0",
     "npm-package-arg": "^9.0.0",
@@ -39,4 +39,4 @@ "npm-pick-manifest": "^7.0.0",
     "semver": "^7.3.5",
-    "ssri": "^8.0.1",
-    "treeverse": "^1.0.4",
+    "ssri": "^9.0.0",
+    "treeverse": "^2.0.0",
     "walk-up-path": "^1.0.0"
@@ -46,3 +46,3 @@ },
     "@npmcli/eslint-config": "^3.0.1",
-    "@npmcli/template-oss": "3.2.2",
+    "@npmcli/template-oss": "3.3.2",
     "benchmark": "^2.1.4",
@@ -52,3 +52,3 @@ "chalk": "^4.1.0",
     "nock": "^13.2.0",
-    "tap": "^15.1.2",
+    "tap": "^16.0.1",
     "tcompare": "^5.0.6"
@@ -109,4 +109,4 @@ },
     "//@npmcli/template-oss": "This file is partially managed by @npmcli/template-oss. Edits may be overwritten.",
-    "version": "3.2.2"
+    "version": "3.3.2"
   }
 }

README.md

 # @npmcli/arborist
 
+[![npm version](https://img.shields.io/npm/v/@npmcli/arborist.svg)](https://npm.im/@npmcli/arborist)
+[![license](https://img.shields.io/npm/l/@npmcli/arborist.svg)](https://npm.im/@npmcli/arborist)
+[![CI - @npmcli/arborist](https://github.com/npm/cli/actions/workflows/ci-npmcli-arborist.yml/badge.svg)](https://github.com/npm/cli/actions/workflows/ci-npmcli-arborist.yml)
+
 Inspect and manage `node_modules` trees.
@@ -4,0 +8,0 @@

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

412366

increased by0.09%

Number of lines in readme file

350

increased by1.16%

Dependency changes

• + Added@npmcli/package-json@2.0.0(transitive)

• + Addedtreeverse@2.0.0(transitive)

• - Removed@npmcli/node-gyp@1.0.3(transitive)

• - Removed@npmcli/package-json@1.0.1(transitive)

• - Removednpm-install-checks@4.0.0(transitive)

• - Removedtreeverse@1.0.4(transitive)

• Updated@npmcli/move-file@^2.0.0

• Updated@npmcli/node-gyp@^2.0.0

• Updated@npmcli/package-json@^2.0.0

• Updatednpm-install-checks@^5.0.0

• Updatedssri@^9.0.0

• Updatedtreeverse@^2.0.0