@roots/browserslist-config - npm Package Compare versions

Comparing version 2023.2.16 to 2023.2.17

package.json

 {
   "name": "@roots/browserslist-config",
-  "version": "2023.2.16",
+  "version": "2023.2.17",
   "description": "Browserslist configuration",
@@ -39,28 +39,60 @@ "repository": {
     "default.cjs",
-    "next.cjs",
-    "wordpress.cjs",
     "last-2-versions.cjs",
     "last-3-versions.cjs",
-    "scripts/"
+    "next.cjs",
+    "scripts",
+    "types.d.ts",
+    "wordpress.cjs"
   ],
+  "exports": {
+    ".": {
+      "require": "./default.cjs"
+    },
+    "./default": {
+      "require": "./default.cjs"
+    },
+    "./broad": {
+      "require": "./last-3-versions.cjs"
+    },
+    "./current": {
+      "require": "./last-2-versions.cjs"
+    },
+    "./next": {
+      "require": "./next.cjs"
+    },
+    "./wordpress": {
+      "require": "./wordpress.cjs"
+    }
+  },
   "main": "./index.cjs",
   "module": "./index.cjs",
   "types": "./types.d.ts",
-  "exports": {
-    ".": "./default.cjs",
-    "./default": "./default.cjs",
-    "./broad": "./last-3-versions.cjs",
-    "./current": "./last-2-versions.cjs",
-    "./next": "./next.cjs",
-    "./wordpress": "./wordpress.cjs"
-  },
   "devDependencies": {
-    "@roots/bud-support": "2023.2.16",
-    "@skypack/package-check": "0.2.2",
-    "execa": "6.1.0",
-    "fs-jetpack": "5.1.0"
+    "@roots/bud-support": "2023.2.17",
+    "@skypack/package-check": "0.2.2"
   },
   "dependencies": {
-    "browserslist": "4.21.4"
+    "browserslist": ">=4.21.4",
+    "execa": "7.0.0",
+    "update-browserslist-db": ">=1.0.10"
   },
+  "peerDependencies": {
+    "browserslist": ">=4.21.4",
+    "execa": "*",
+    "update-browserslist-db": "*"
+  },
+  "peerDependenciesMeta": {
+    "browserslist": {
+      "optional": true
+    },
+    "execa": {
+      "optional": true
+    },
+    "update-browserslist-db": {
+      "optional": true
+    }
+  },
+  "scripts": {
+    "postinstall": "node scripts/postinstall.mjs"
+  },
   "volta": {
@@ -67,0 +99,0 @@ "extends": "../../../package.json"

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Install scripts

Supply chain risk

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 2 instances in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

7384

increased by14.32%

Dev dependency count

2

decreased by-50%

Number of package files

10

increased by11.11%

Lines of code

71

increased by24.56%

Worsened metrics

Dependency count

6

increased by500%

Number of high supply chain risk alerts

1

increased byInfinity%

Number of low supply chain risk alerts

2

increased byInfinity%

Dependency changes

• + Addedexeca@7.0.0

• + Addedupdate-browserslist-db@>=1.0.10

• + Addedbrowserslist@4.24.0(transitive)

• + Addedcross-spawn@7.0.3(transitive)

• + Addedexeca@7.0.0(transitive)

• + Addedget-stream@6.0.1(transitive)

• + Addedhuman-signals@4.3.1(transitive)

• + Addedis-stream@3.0.0(transitive)

• + Addedisexe@2.0.0(transitive)

• + Addedmerge-stream@2.0.0(transitive)

• + Addedmimic-fn@4.0.0(transitive)

• + Addednpm-run-path@5.3.0(transitive)

• + Addedonetime@6.0.0(transitive)

• + Addedpath-key@3.1.14.0.0(transitive)

• + Addedshebang-command@2.0.0(transitive)

• + Addedshebang-regex@3.0.0(transitive)

• + Addedsignal-exit@3.0.7(transitive)

• + Addedstrip-final-newline@3.0.0(transitive)

• + Addedwhich@2.0.2(transitive)

• - Removedbrowserslist@4.21.4(transitive)

• Updatedbrowserslist@>=4.21.4