@rollup/wasm-node - npm Package Compare versions

Comparing version 4.60.2 to 4.60.3

dist/es/getLogFilter.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/es/parseAst.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/es/rollup.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/getLogFilter.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/loadConfigFile.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/parseAst.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/rollup.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/shared/fsevents-importer.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/shared/loadConfigFile.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/shared/watch-cli.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/shared/watch.js

 /*
   @license
-	Rollup.js v4.60.2
-	Sat, 18 Apr 2026 13:58:01 GMT - commit a6be82b8abd747458afdc7484319f7b5deb92535
+	Rollup.js v4.60.3
+	Mon, 04 May 2026 15:33:41 GMT - commit b47bdabeccbb7aa1b1d4117f2f4a781a9f6de297
 
@@ -6,0 +6,0 @@ https://github.com/rollup/rollup

dist/wasm-node/bindings_wasm.js

@@ -94,3 +94,3 @@ /* @ts-self-types="./bindings_wasm.d.ts" */
         __proto__: null,
-        __wbg___wbindgen_throw_6b64449b9b9ed33c: function(arg0, arg1) {
+        __wbg___wbindgen_throw_9c75d47bf9e7731e: function(arg0, arg1) {
             throw new Error(getStringFromWasm0(arg0, arg1));
@@ -109,3 +109,3 @@ },
         },
-        __wbg_length_9f1775224cf1d815: function(arg0) {
+        __wbg_length_ba3c032602efe310: function(arg0) {
             const ret = getObject(arg0).length;
@@ -118,3 +118,3 @@ return ret;
         },
-        __wbg_prototypesetcall_a6b02eb00b0f4ce2: function(arg0, arg1, arg2) {
+        __wbg_prototypesetcall_fd4050e806e1d519: function(arg0, arg1, arg2) {
             Uint8Array.prototype.set.call(getArrayU8FromWasm0(arg0, arg1), getObject(arg2));
@@ -168,4 +168,3 @@ },
 function getStringFromWasm0(ptr, len) {
-    ptr = ptr >>> 0;
-    return decodeText(ptr, len);
+    return decodeText(ptr >>> 0, len);
 }
@@ -255,2 +254,3 @@
 const wasmModule = new WebAssembly.Module(wasmBytes);
-let wasm = new WebAssembly.Instance(wasmModule, __wbg_get_imports()).exports;
+let wasmInstance = new WebAssembly.Instance(wasmModule, __wbg_get_imports());
+let wasm = wasmInstance.exports;

package.json

 {
   "name": "@rollup/wasm-node",
-  "version": "4.60.2",
+  "version": "4.60.3",
   "description": "Next-generation ES module bundler with Node wasm",
@@ -41,5 +41,7 @@ "main": "dist/rollup.js",
     "@codemirror/language": "^6.12.3",
-    "@codemirror/search": "^6.6.0",
+    "@codemirror/search": "^6.7.0",
     "@codemirror/state": "^6.6.0",
-    "@codemirror/view": "^6.41.0",
+    "@codemirror/view": "^6.41.1",
+    "@emnapi/core": "^1.10.0",
+    "@emnapi/runtime": "^1.10.0",
     "@eslint/js": "^10.0.1",
@@ -65,3 +67,3 @@ "@inquirer/prompts": "^7.10.1",
     "@types/yargs-parser": "^21.0.3",
-    "@vue/language-server": "^3.2.6",
+    "@vue/language-server": "^3.2.7",
     "acorn": "^8.16.0",
@@ -79,7 +81,7 @@ "acorn-import-assertions": "^1.9.0",
     "es6-shim": "^0.35.8",
-    "eslint": "^10.2.0",
+    "eslint": "^10.2.1",
     "eslint-config-prettier": "^10.1.8",
     "eslint-plugin-prettier": "^5.5.5",
     "eslint-plugin-unicorn": "^64.0.0",
-    "eslint-plugin-vue": "^10.8.0",
+    "eslint-plugin-vue": "^10.9.0",
     "fixturify": "^3.0.0",
@@ -95,3 +97,3 @@ "flru": "^1.0.2",
     "magic-string": "^0.30.21",
-    "memfs": "^4.57.1",
+    "memfs": "^4.57.2",
     "mocha": "11.7.5",
@@ -105,8 +107,10 @@ "nodemon": "^3.1.14",
     "pinia": "^3.0.4",
-    "prettier": "^3.8.2",
+    "prettier": "^3.8.3",
     "prettier-plugin-organize-imports": "^4.3.0",
     "pretty-bytes": "^7.1.0",
     "pretty-ms": "^9.3.0",
+    "react": "^18.3.1",
+    "react-dom": "^18.3.1",
     "requirejs": "^2.3.8",
-    "rollup": "^4.60.1",
+    "rollup": "^4.60.2",
     "rollup-plugin-license": "^3.7.1",
@@ -119,11 +123,11 @@ "semver": "^7.7.4",
     "systemjs": "^6.15.1",
-    "terser": "^5.46.1",
+    "terser": "^5.46.2",
     "tslib": "^2.8.1",
     "typescript": "^5.9.3",
-    "typescript-eslint": "^8.58.2",
+    "typescript-eslint": "^8.59.1",
     "vite": "^7.3.2",
     "vitepress": "^1.6.4",
-    "vue": "^3.5.32",
+    "vue": "^3.5.33",
     "vue-eslint-parser": "^10.4.0",
-    "vue-tsc": "^3.2.6",
+    "vue-tsc": "^3.2.7",
     "wasm-pack": "^0.14.0",
@@ -133,3 +137,3 @@ "yargs-parser": "^21.1.1"
   "overrides": {
-    "axios": "^1.15.0",
+    "axios": "^1.15.2",
     "esbuild": ">0.24.2",
@@ -146,3 +150,7 @@ "lodash-es": ">4.17.22",
   "comments": {
-    "vue-tsc": "This is necessary so that prettier-plugin-organize-imports works correctly in Vue templatges"
+    "vue-tsc": "This is necessary so that prettier-plugin-organize-imports works correctly in Vue templatges",
+    "@emnapi/core": "If missing this fails npm install for Linux ARM",
+    "@emnapi/runtime": "If missing this fails npm install for Linux ARM",
+    "react": "If missing this fails npm install for Linux ARM",
+    "react-dom": "If missing this fails npm install for Linux ARM"
   },
@@ -149,0 +157,0 @@ "files": [

New alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 4 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

AI-detected potential code anomaly

Supply chain risk

AI has identified unusual behaviors that may pose a security risk.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Fixed alerts

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 4 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

3372723

0.02%

Lines of code

70835

0.02%

Number of low supply chain risk alerts

406

-8.56%

Worsened metrics

Dev dependency count

91

4.6%

No dependency changes