ai - npm Package Compare versions

Comparing version 1.1.0 to 2.0.0

package.json

 {
   "name": "ai",
-  "version": "1.1.0",
-  "description": "I'm helping you finding abandoned issues in your project",
-  "main": "index.js",
-  "bin": "./bin/ai.js",
-  "preferGlobal": true,
+  "version": "2.0.0",
+  "license": "Apache-2.0",
+  "sideEffects": false,
+  "main": "./dist/index.js",
+  "module": "./dist/index.mjs",
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist/**/*",
+    "react/dist/**/*",
+    "svelte/dist/**/*"
+  ],
+  "exports": {
+    "./package.json": "./package.json",
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.mjs",
+      "module": "./dist/index.mjs",
+      "require": "./dist/index.js"
+    },
+    "./react": {
+      "types": "./react/dist/index.d.ts",
+      "import": "./react/dist/index.mjs",
+      "module": "./react/dist/index.mjs",
+      "require": "./react/dist/index.js"
+    },
+    "./svelte": {
+      "types": "./svelte/dist/index.d.ts",
+      "import": "./svelte/dist/index.mjs",
+      "module": "./svelte/dist/index.mjs",
+      "require": "./svelte/dist/index.js"
+    }
+  },
+  "jest": {
+    "preset": "ts-jest",
+    "testEnvironment": "node"
+  },
   "dependencies": {
-    "request": "~2.40.0"
+    "eventsource-parser": "1.0.0",
+    "nanoid": "^3.3.6",
+    "sswr": "^1.10.0",
+    "swr": "2.1.5"
   },
   "devDependencies": {
-    "hock": "~0.2.4",
-    "tap": "~0.4.8"
+    "@edge-runtime/jest-environment": "1.1.0-beta.31",
+    "@types/jest": "29.2.0",
+    "@types/node": "^17.0.12",
+    "@types/react": "^18.2.0",
+    "@types/react-dom": "^18.2.0",
+    "eslint": "^7.32.0",
+    "jest": "29.2.1",
+    "ts-jest": "29.0.3",
+    "tsup": "^6.7.0",
+    "typescript": "^4.5.3",
+    "@vercel/ai-tsconfig": "0.0.0",
+    "eslint-config-vercel-ai": "0.0.0"
   },
-  "bundleDependencies": [
-    "request"
-  ],
-  "scripts": {
-    "test": "tap test/*.js"
+  "peerDependencies": {
+    "react": "^18.0.0",
+    "svelte": "^3.29.0"
   },
-  "repository": {
-    "type": "git",
-    "url": "git://github.com/robertkowalski/ai.git"
+  "peerDependenciesMeta": {
+    "react": {
+      "optional": true
+    },
+    "svelte": {
+      "optional": true
+    }
   },
-  "homepage": "https://github.com/robertkowalski/ai",
-  "keywords": [
-    "support,",
-    "github,",
-    "issues,",
-    "abandoned"
-  ],
-  "author": "Robert Kowalski <rok@kowalski.gd>",
-  "license": "BSD-2-Clause",
-  "bugs": {
-    "url": "https://github.com/robertkowalski/ai/issues"
+  "engines": {
+    "node": ">=14.6"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "build": "tsup",
+    "clean": "rm -rf .turbo && rm -rf node_modules && rm -rf dist && rm -rf react/dist && rm -rf svelte/dist",
+    "dev": "tsup --watch",
+    "lint": "eslint \"./**/*.ts*\"",
+    "type-check": "tsc --noEmit",
+    "prettier-check": "prettier --check \"./**/*.ts*\"",
+    "test": "jest --env @edge-runtime/jest-environment .test.ts && jest --env node .test.ts"
   }
-}
+}

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

No contributors or author data

Maintenance

Package does not specify a list of contributors or an author in package.json.

Found 1 instance in 1 package

No bug tracker

Maintenance

Package does not have a linked bug tracker in package.json.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No website

Quality

Package does not have a website.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 6 instances in 1 package

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Copyleft License

License

(Experimental) Copyleft license information was found.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 11 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Mixed license

License

(Experimental) Package contains multiple licenses.

Found 1 instance in 1 package

Non-permissive License

License

(Experimental) A license not known to be considered permissive was found.

Found 1 instance in 1 package

Unidentified License

License

(Experimental) Something that seems like a license was found, but its contents could not be matched with a known license.

Found 4 instances in 1 package

Improved metrics

Number of low license alerts

0

decreased by-100%

License quality

100

increased by42.86%

Number of low supply chain risk alerts

1

decreased by-97.56%

Number of medium supply chain risk alerts

18

decreased by-18.18%

Worsened metrics

Total package byte prevSize

195762

decreased by-89.34%

Dependency count

6

increased by500%

Dev dependency count

12

increased by500%

Number of package files

60

decreased by-78.8%

Lines of code

6501

decreased by-76.09%

Number of low maintenance alerts

2

increased byInfinity%

Number of low quality alerts

1

increased byInfinity%

Number of medium quality alerts

1

increased byInfinity%

Number of lines in readme file

0

decreased by-100%

Dependency changes

• + Addedeventsource-parser@1.0.0

• + Addednanoid@^3.3.6

• + Addedsswr@^1.10.0

• + Addedswr@2.1.5

• + Added@ampproject/remapping@2.3.0(transitive)

• + Added@jridgewell/gen-mapping@0.3.5(transitive)

• + Added@jridgewell/resolve-uri@3.1.2(transitive)

• + Added@jridgewell/set-array@1.2.1(transitive)

• + Added@jridgewell/sourcemap-codec@1.5.0(transitive)

• + Added@jridgewell/trace-mapping@0.3.25(transitive)

• + Added@types/estree@1.0.6(transitive)

• + Addedacorn@8.14.0(transitive)

• + Addedaria-query@5.3.2(transitive)

• + Addedaxobject-query@4.1.0(transitive)

• + Addedcode-red@1.0.4(transitive)

• + Addedcss-tree@2.3.1(transitive)

• + Addedestree-walker@3.0.3(transitive)

• + Addedeventsource-parser@1.0.0(transitive)

• + Addedis-reference@3.0.2(transitive)

• + Addedjs-tokens@4.0.0(transitive)

• + Addedlocate-character@3.0.0(transitive)

• + Addedloose-envify@1.4.0(transitive)

• + Addedmagic-string@0.30.12(transitive)

• + Addedmdn-data@2.0.30(transitive)

• + Addednanoid@3.3.7(transitive)

• + Addedperiscopic@3.1.0(transitive)

• + Addedreact@18.3.1(transitive)

• + Addedsource-map-js@1.2.1(transitive)

• + Addedsswr@1.11.0(transitive)

• + Addedsvelte@3.59.24.2.19(transitive)

• + Addedswr@2.1.5(transitive)

• + Addedswrev@3.0.0(transitive)

• + Addeduse-sync-external-store@1.2.2(transitive)

• - Removedrequest@~2.40.0