@yarnpkg/libzip - npm Package Compare versions

Comparing version 2.2.2 to 2.2.3-rc.1

lib/async.js

 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getLibzipPromise = exports.getLibzipSync = void 0;
+const tslib_1 = require("tslib");
+const libzipAsync_1 = (0, tslib_1.__importDefault)(require("./libzipAsync"));
 const makeInterface_1 = require("./makeInterface");
@@ -11,11 +13,6 @@ let promise = null;
 async function getLibzipPromise() {
-    if (promise === null) {
-        promise = new Promise(resolve => {
-            require(`./libzipAsync`).then((libzip) => {
-                resolve(makeInterface_1.makeInterface(libzip));
-            });
-        });
-    }
+    if (promise === null)
+        promise = (0, libzipAsync_1.default)().then(libzip => (0, makeInterface_1.makeInterface)(libzip));
     return promise;
 }
 exports.getLibzipPromise = getLibzipPromise;

lib/libzipAsync.d.ts

 /// <reference types="emscripten" />
 
-export = Module;
+// eslint-disable-next-line arca/no-default-export
+export default function createModule(): Promise<EmscriptenModule>;

lib/libzipSync.d.ts

 /// <reference types="emscripten" />
 
-export = Module;
+// eslint-disable-next-line arca/no-default-export
+export default function createModule(): EmscriptenModule;

lib/sync.js

 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getLibzipPromise = exports.getLibzipSync = void 0;
+const tslib_1 = require("tslib");
+const libzipSync_1 = (0, tslib_1.__importDefault)(require("./libzipSync"));
 const makeInterface_1 = require("./makeInterface");
@@ -8,3 +10,3 @@ let mod = null;
     if (mod === null)
-        mod = makeInterface_1.makeInterface(require(`./libzipSync`));
+        mod = (0, makeInterface_1.makeInterface)((0, libzipSync_1.default)());
     return mod;
@@ -11,0 +13,0 @@ }

package.json

 {
   "name": "@yarnpkg/libzip",
-  "version": "2.2.2",
+  "version": "2.2.3-rc.1",
   "license": "BSD-2-Clause",
@@ -35,3 +35,4 @@ "main": "./lib/sync.js",
     "node": ">=12 <14 || 14.2 - 14.9 || >14.10.0"
-  }
+  },
+  "stableVersion": "2.2.2"
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

765362

increased by5.38%

Lines of code

11398

increased by2.08%

Number of low supply chain risk alerts

4

decreased by-33.33%

Worsened metrics

Number of low quality alerts

2

increased by100%

No dependency changes