New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
@smithy/hash-node
Advanced tools
@smithy/hash-node - npm Package Compare versions
+6
-7
| { | ||
| "name": "@smithy/hash-node", | ||
| "version": "4.2.12", | ||
| "version": "4.2.13", | ||
| "scripts": { | ||
| "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types && yarn build:types:downlevel'", | ||
| "build:cjs": "node ../../scripts/inline hash-node", | ||
| "build:es": "yarn g:tsc -p tsconfig.es.json", | ||
| "build": "concurrently 'yarn:build:types' 'yarn:build:es:cjs'", | ||
| "build:es:cjs": "yarn g:tsc -p tsconfig.es.json && node ../../scripts/inline hash-node", | ||
| "build:types": "yarn g:tsc -p tsconfig.types.json", | ||
| "build:types:downlevel": "premove dist-types/ts3.4 && downlevel-dts dist-types dist-types/ts3.4", | ||
| "stage-release": "premove .release && yarn pack && mkdir ./.release && tar zxvf ./package.tgz --directory ./.release && rm ./package.tgz", | ||
| "clean": "premove dist-cjs dist-es dist-types tsconfig.cjs.tsbuildinfo tsconfig.es.tsbuildinfo tsconfig.types.tsbuildinfo", | ||
| "format": "prettier --config ../../prettier.config.js --ignore-path ../../.prettierignore --write \"**/*.{ts,md,json}\"", | ||
| "lint": "eslint -c ../../.eslintrc.js \"src/**/*.ts\"", | ||
| "format": "prettier --config ../../prettier.config.js --ignore-path ../../.prettierignore --write \"**/*.{ts,md,json}\"", | ||
| "stage-release": "premove .release && yarn pack && mkdir ./.release && tar zxvf ./package.tgz --directory ./.release && rm ./package.tgz", | ||
| "test": "yarn g:vitest run", | ||
@@ -35,3 +34,3 @@ "test:watch": "yarn g:vitest watch" | ||
| "dependencies": { | ||
| "@smithy/types": "^4.13.1", | ||
| "@smithy/types": "^4.14.0", | ||
| "@smithy/util-buffer-from": "^4.2.2", | ||
@@ -38,0 +37,0 @@ "@smithy/util-utf8": "^4.2.2", |
+10
-3
@@ -6,6 +6,13 @@ # @smithy/md5-node | ||
| > An internal package | ||
| ### :warning: Internal API :warning: | ||
| ## Usage | ||
| > This is an internal package. | ||
| > That means this is used as a dependency for other, public packages, but | ||
| > should not be taken directly as a dependency in your application's `package.json`. | ||
| You probably shouldn't, at least directly. | ||
| > If you are updating the version of this package, for example to bring in a | ||
| > bug-fix, you should do so by updating your application lockfile with | ||
| > e.g. `npm up @scope/package` or equivalent command in another | ||
| > package manager, rather than taking a direct dependency. | ||
| --- |
| import { Checksum, SourceData } from "@smithy/types"; | ||
| /** | ||
| * @internal | ||
| */ | ||
| export declare class Hash implements Checksum { | ||
| private readonly algorithmIdentifier; | ||
| private readonly secret?; | ||
| private hash; | ||
| constructor(algorithmIdentifier: string, secret?: SourceData); | ||
| update(toHash: SourceData, encoding?: "utf8" | "ascii" | "latin1"): void; | ||
| digest(): Promise<Uint8Array>; | ||
| reset(): void; | ||
| } |
No alert changes
Improved metrics
- Number of lines in readme file
18
63.64%Worsened metrics
- Total package byte prevSize
17040
-0.32%- Number of package files
6
-14.29%- Lines of code
89
-12.75%Dependency changes
Updated
@smithy/types@^4.14.0