@rollup/plugin-yaml - npm Package Compare versions

Comparing version 3.1.0 to 4.0.0

package.json

 {
   "name": "@rollup/plugin-yaml",
-  "version": "3.1.0",
+  "version": "4.0.0",
   "publishConfig": {
@@ -16,6 +16,11 @@ "access": "public"
   "bugs": "https://github.com/rollup/plugins/issues",
-  "main": "dist/index.js",
-  "module": "dist/index.es.js",
+  "main": "./dist/cjs/index.js",
+  "module": "./dist/es/index.js",
+  "exports": {
+    "types": "./types/index.d.ts",
+    "import": "./dist/es/index.js",
+    "default": "./dist/cjs/index.js"
+  },
   "engines": {
-    "node": ">=10.0.0"
+    "node": ">=14.0.0"
   },
@@ -32,3 +37,3 @@ "scripts": {
     "pretest": "pnpm build",
-    "release": "pnpm plugin:release --workspace-root -- --pkg $npm_package_name",
+    "release": "pnpm --workspace-root plugin:release --pkg $npm_package_name",
     "test": "ava"
@@ -38,2 +43,3 @@ },
     "dist",
+    "!dist/**/*.map",
     "types",
@@ -49,20 +55,23 @@ "README.md",
   "peerDependencies": {
-    "rollup": "^1.20.0 || ^2.0.0"
+    "rollup": "^1.20.0||^2.0.0||^3.0.0"
   },
+  "peerDependenciesMeta": {
+    "rollup": {
+      "optional": true
+    }
+  },
   "dependencies": {
-    "@rollup/pluginutils": "^3.1.0",
-    "js-yaml": "^3.14.0",
-    "tosource": "^1.0.0"
+    "@rollup/pluginutils": "^4.2.1",
+    "js-yaml": "^4.1.0",
+    "tosource": "^2.0.0-alpha.3"
   },
   "devDependencies": {
-    "@rollup/plugin-node-resolve": "^8.4.0",
-    "del-cli": "^3.0.1",
-    "rollup": "^2.23.0",
-    "source-map-support": "^0.5.19"
+    "@rollup/plugin-node-resolve": "^14.1.0",
+    "del-cli": "^5.0.0",
+    "rollup": "^3.0.0-7",
+    "source-map-support": "^0.5.21"
   },
   "types": "./types/index.d.ts",
   "ava": {
-    "babel": {
-      "compileEnhancements": false
-    },
+    "workerThreads": false,
     "files": [
@@ -69,0 +78,0 @@ "!**/fixtures/**",

README.md

@@ -16,3 +16,3 @@ [npm]: https://img.shields.io/npm/v/@rollup/plugin-yaml
 
-This plugin requires an [LTS](https://github.com/nodejs/Release) Node version (v8.0.0+) and Rollup v1.20.0+.
+This plugin requires an [LTS](https://github.com/nodejs/Release) Node version (v14.0.0+) and Rollup v1.20.0+.
 
@@ -69,3 +69,3 @@ ## Install
 
-A [minimatch pattern](https://github.com/isaacs/minimatch), or array of patterns, which specifies the files in the build the plugin should _ignore_. By default no files are ignored.
+A [picomatch pattern](https://github.com/micromatch/picomatch), or array of patterns, which specifies the files in the build the plugin should _ignore_. By default no files are ignored.
 
@@ -77,3 +77,3 @@ ### `include`
 
-A [minimatch pattern](https://github.com/isaacs/minimatch), or array of patterns, which specifies the files in the build the plugin should operate on. By default all files are targeted.
+A [picomatch pattern](https://github.com/micromatch/picomatch), or array of patterns, which specifies the files in the build the plugin should operate on. By default all files are targeted.
 
@@ -80,0 +80,0 @@ ### `safe`

types/index.d.ts

@@ -14,3 +14,3 @@ import { FilterPattern } from '@rollup/pluginutils';
   /**
-   * A minimatch pattern, or array of patterns, which specifies the files in the build the plugin
+   * A picomatch pattern, or array of patterns, which specifies the files in the build the plugin
    * should operate on.
@@ -21,3 +21,3 @@ * By default all files are targeted.
   /**
-   * A minimatch pattern, or array of patterns, which specifies the files in the build the plugin
+   * A picomatch pattern, or array of patterns, which specifies the files in the build the plugin
    * should _ignore_.
@@ -28,10 +28,2 @@ * By default no files are ignored.
   /**
-   * - If `true`, specifies that the data in the target YAML file(s) contain trusted data and
-   * should be loaded normally.
-   * - If `false`, data is assumed to be untrusted and will be loaded using
-   * [safety methods](https://github.com/nodeca/js-yaml#safeload-string---options-).
-   * @default true
-   */
-  safe?: boolean;
-  /**
    * A function which can optionally mutate parsed YAML.
@@ -38,0 +30,0 @@ * The function should return the mutated `object`, or `undefined` which will make no changes to

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Worsened metrics

Total package byte prevSize

9749

decreased by-46.91%

Number of package files

6

decreased by-25%

Lines of code

143

decreased by-7.14%

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Added@rollup/pluginutils@4.2.1(transitive)

• + Addedargparse@2.0.1(transitive)

• + Addedestree-walker@2.0.2(transitive)

• + Addedjs-yaml@4.1.0(transitive)

• + Addedrollup@3.29.5(transitive)

• + Addedtosource@2.0.0-alpha.3(transitive)

• - Removed@rollup/pluginutils@3.1.0(transitive)

• - Removed@types/estree@0.0.39(transitive)

• - Removedargparse@1.0.10(transitive)

• - Removedesprima@4.0.1(transitive)

• - Removedestree-walker@1.0.1(transitive)

• - Removedjs-yaml@3.14.1(transitive)

• - Removedrollup@2.79.2(transitive)

• - Removedsprintf-js@1.0.3(transitive)

• - Removedtosource@1.0.0(transitive)

• Updated@rollup/pluginutils@^4.2.1

• Updatedjs-yaml@^4.1.0

• Updatedtosource@^2.0.0-alpha.3