@team-griffin/css-sides - npm Package Compare versions

Comparing version 1.0.0 to 1.1.0

package.json

 {
   "name": "@team-griffin/css-sides",
-  "version": "1.0.0",
-  "main": "lib/index.js",
-  "jsnext:main": "lib/index.js",
+  "version": "1.1.0",
+  "main": "dist/cjs/css-sides.js",
+  "module": "dist/es/css-sides.js",
   "repository": "git@github.com:team-griffin/css-sides.git",
@@ -17,3 +17,6 @@ "author": "Joshua Thornton <joshua.thornton@heg.com>",
     "flow": "flow check; test $? -eq 0 -o $? -eq 2",
-    "build": "npm run transpile",
+    "build:dev": "cross-env NODE_ENV=development rollup --config ./rollup/development.js",
+    "build:prod": "cross-env NODE_ENV=production rollup --config ./rollup/production.js",
+    "build:entry": "cross-env NODE_ENV=production rollup --config ./rollup/entry.js",
+    "build": "yarn build:dev && yarn build:prod && yarn build:entry",
     "test": "node_modules/.bin/karma start ./config/karma.conf.js",
@@ -30,14 +33,22 @@ "test:single": "yarn run test -- --single",
     "babel-loader": "^7.1.2",
-    "babel-preset-es2015": "^6.1.18",
     "babel-preset-react": "^6.5.0",
-    "babel-preset-stage-0": "^6.5.0",
+    "babel-plugin-transform-object-rest-spread": "^6.26.0",
+    "babel-plugin-external-helpers": "^6.22.0",
+    "babel-preset-env": "^1.6.1",
+    "cross-env": "^5.1.3",
     "dockerscript": "^0.0.6",
     "eslint": "^4.13.1",
     "eslint-plugin-flowtype": "^2.30.0",
-    "eslint-plugin-react": "^7.5.1"
+    "eslint-plugin-react": "^7.5.1",
+    "rollup": "^0.55.3",
+    "rollup-plugin-babel": "^3.0.3",
+    "rollup-plugin-local-resolve": "^1.0.7",
+    "rollup-plugin-memory": "^3.0.0",
+    "rollup-plugin-replace": "^2.0.0",
+    "rollup-plugin-uglify-es": "^0.0.1"
   },
   "dependencies": {
-    "@team-griffin/css-longhand": "^1.0.0",
+    "@team-griffin/css-sides": "^1.0.0",
     "lodash.reduce": "^4.6.0"
   }
 }

New alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Minified code

Quality

This package contains minified code. This may be harmless in some cases where minified code is included in packaged libraries, however packages on npm should not minify code.

Found 1 instance in 1 package

Fixed alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

129330

increased by2.33%

Number of package files

20

increased by66.67%

Lines of code

414

increased by50.55%

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Dev dependency count

19

increased by72.73%

Number of low quality alerts

2

increased by100%

Number of low supply chain risk alerts

3

increased by200%

Dependency changes

• + Added@team-griffin/css-sides@^1.0.0

• - Removed@team-griffin/css-longhand@^1.0.0

• - Removed@team-griffin/css-longhand@1.4.0(transitive)