@toruslabs/eccrypto - npm Package Compare versions

Comparing version 2.2.1 to 3.0.0

package.json

 {
   "name": "@toruslabs/eccrypto",
-  "version": "2.2.1",
+  "version": "3.0.0",
   "description": "JavaScript Elliptic curve cryptography library, includes fix to browser.js so that encrypt/decrypt works",
-  "main": "dist/browser.js",
-  "browser": "dist/browser.js",
-  "types": "types.d.ts",
+  "main": "./dist/eccrypto.cjs.js",
+  "module": "./dist/eccrypto.esm.js",
+  "types": "./dist/types/index.d.ts",
   "scripts": {
-    "build": "babel -d dist browser.js",
+    "build": "torus-scripts build",
+    "release": "torus-scripts release",
     "test": "ECCRYPTO_NO_FALLBACK=1 mocha && karma start",
@@ -20,2 +21,6 @@ "m": "mocha",
   },
+  "files": [
+    "src",
+    "dist"
+  ],
   "keywords": [
@@ -45,2 +50,6 @@ "ecc",
     "@babel/runtime": "^7.21.5",
+    "@toruslabs/eslint-config-typescript": "^2.0.0",
+    "eslint-plugin-chai-expect": "^3.0.0",
+    "@toruslabs/torus-scripts": "^4.0.0",
+    "@types/elliptic": "^6.4.14",
     "browserify": "^17.0.0",
@@ -50,10 +59,10 @@ "buffer-equal": "^1.0.1",
     "eslint": "^8.39.0",
-    "karma": "^6.4.1",
+    "karma": "^6.4.2",
     "karma-browserify": "^8.1.0",
-    "karma-chrome-launcher": "^3.1.1",
+    "karma-chrome-launcher": "^3.2.0",
     "karma-cli": "^2.0.0",
     "karma-firefox-launcher": "^2.1.2",
-    "karma-safari-launcher": "^1.0.0",
     "karma-mocha": "^2.0.1",
     "karma-mocha-reporter": "^2.2.5",
+    "karma-safari-launcher": "^1.0.0",
     "mocha": "^10.2.0"
@@ -63,3 +72,7 @@ },
     "elliptic": "^6.5.4"
+  },
+  "engines": {
+    "node": ">=16.18.1",
+    "npm": ">=8.x"
   }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses eval() which is a dangerous function. This prevents the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

773264

increased by1513.89%

Number of package files

12

increased by20%

Lines of code

1463

increased by70.12%

Worsened metrics

Dev dependency count

22

increased by22.22%

Number of medium supply chain risk alerts

2

increased byInfinity%

No dependency changes