@streamr/config - npm Package Compare versions

Comparing version 0.0.3 to 1.0.0

package.json

 {
   "name": "@streamr/config",
-  "version": "0.0.3",
+  "version": "1.0.0",
   "description": "Zero dependency package that contains Streamr Network smart contract addresses",
@@ -5,0 +5,0 @@ "main": "dist/src/index.js",

README.md

@@ -17,7 +17,19 @@ # @streamr/config
 ```typescript
+import { Chains } from "@streamr/config"
+
+const {
+    ethereum: {
+        id: chainId,
+        contracts: {
+            "DATA-token": dataTokenAddress
+        }
+    }
+} = Chains.load("production")
+```
+
+Find RPC endpoints:
+```typescript
 import * as config from "@streamr/config"
 
 const chains: config.Chains = config.Chains.load("production")
-const contractAddress: string = chains.ethereum.contracts["DATA-token"]
-const chainId: number = chains.ethereum.id
 const httpRpcEndpoints: RPCEndpoint[] = chains.ethereum.getRPCEndpointsByProtocol(config.RPCProtocol.HTTP)
@@ -24,0 +36,0 @@ const wsRpcEndpoints: RPCEndpoint[] = chains.ethereum.getRPCEndpointsByProtocol(config.RPCProtocol.WEBSOCKET)

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Deprecated

Maintenance

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Number of low quality alerts

0

decreased by-100%

Number of lines in readme file

110

increased by12.24%

Number of low supply chain risk alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

4600

decreased by-69.73%

Number of package files

3

decreased by-50%

Lines of code

0

decreased by-100%

Number of medium maintenance alerts

1

increased byInfinity%

Number of medium supply chain risk alerts

3

increased byInfinity%

No dependency changes