@opengovsg/myinfo-gov-client - npm Package Compare versions

Comparing version 2.0.0 to 2.1.0

.eslintrc.json

 {
   "extends": [
-    "@opengovsg/eslint-config-opengovsg"
+    "@opengovsg/eslint-config-opengovsg",
+    "plugin:@typescript-eslint/recommended"
   ],
+  "parser": "@typescript-eslint/parser",
   "plugins": [
-    "mocha"
+    "mocha",
+    "@typescript-eslint"
   ],
@@ -19,2 +22,1 @@ "overrides": [{
 }
-

package.json

 {
   "name": "@opengovsg/myinfo-gov-client",
-  "version": "2.0.0",
+  "version": "2.1.0",
   "description": "A lightweight client to easily call the MyInfo TUO endpoint for the Singapore government. Compatible with NodeJS version >=6.",
-  "main": "index.js",
+  "main": "build/index.js",
+  "types": "build/index.d.ts",
   "scripts": {
-    "test": "npx nyc --reporter=text mocha --recursive",
-    "lint": "eslint --ext .js --ignore-path .gitignore --fix ."
+    "test": "npm run build && npx nyc --reporter=text mocha --recursive",
+    "lint": "eslint --ext .ts --ignore-pattern '*.d.ts' --ignore-path .gitignore --fix .",
+    "build": "tsc"
   },
@@ -25,5 +27,7 @@ "repository": {
   "dependencies": {
+    "axios": "^0.21.0",
     "jose": "^0.3.2",
     "node-jose": "^2.0.0",
     "path": "^0.12.7",
+    "qs": "^6.9.4",
     "request": "^2.88.0"
@@ -33,4 +37,10 @@ },
     "@opengovsg/eslint-config-opengovsg": "^1.0.5",
+    "@types/node": "^14.11.10",
+    "@types/node-jose": "^1.1.5",
+    "@types/qs": "^6.9.5",
+    "@types/request": "^2.48.5",
+    "@typescript-eslint/eslint-plugin": "^4.4.1",
+    "@typescript-eslint/parser": "^4.4.1",
     "chai": "^4.2.0",
-    "eslint": "^5.9.0",
+    "eslint": "^7.11.0",
     "eslint-config-standard": "^12.0.0",
@@ -44,4 +54,5 @@ "eslint-plugin-import": "^2.14.0",
     "nyc": "^15.1.0",
-    "proxyquire": "^2.1.0"
+    "proxyquire": "^2.1.0",
+    "typescript": "^4.0.3"
   }
 }

New alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Fixed alerts

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Number of low supply chain risk alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

17971

decreased by-90.54%

Dependency count

6

increased by50%

Dev dependency count

19

increased by58.33%

Number of package files

10

decreased by-16.67%

Lines of code

83

decreased by-98.97%

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Addedaxios@^0.21.0

• + Addedqs@^6.9.4

• + Addedaxios@0.21.4(transitive)

• + Addedcall-bind@1.0.7(transitive)

• + Addeddefine-data-property@1.1.4(transitive)

• + Addedes-define-property@1.0.0(transitive)

• + Addedes-errors@1.3.0(transitive)

• + Addedfollow-redirects@1.15.6(transitive)

• + Addedfunction-bind@1.1.2(transitive)

• + Addedget-intrinsic@1.2.4(transitive)

• + Addedgopd@1.0.1(transitive)

• + Addedhas-property-descriptors@1.0.2(transitive)

• + Addedhas-proto@1.0.3(transitive)

• + Addedhas-symbols@1.0.3(transitive)

• + Addedhasown@2.0.2(transitive)

• + Addedobject-inspect@1.13.2(transitive)

• + Addedqs@6.12.1(transitive)

• + Addedset-function-length@1.2.2(transitive)

• + Addedside-channel@1.0.6(transitive)