Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

axe-sarif-converter

Package Overview
Dependencies
Maintainers
3
Versions
31
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

axe-sarif-converter - npm Package Compare versions

Comparing version 2.2.0 to 2.3.0

dist/test-resource-constants.d.ts
dist/test-resource-constants.js

56

package.json
{
"name": "axe-sarif-converter",
"version": "2.2.0",
"version": "2.3.0",
"description": "Convert axe-core accessibility scan results to the SARIF format",

@@ -19,3 +19,3 @@ "main": "dist/index.js",

"axe-core": "^3.2.2",
"yargs": "^14.0.0"
"yargs": "^15.0.2"
},

@@ -25,8 +25,8 @@ "devDependencies": {

"@types/lodash": "^4.14.136",
"@types/node": "^12.6.8",
"@types/node": "^13.1.2",
"@types/yargs": "^13.0.2",
"jest": "^24.8.0",
"jest-circus": "^24.8.0",
"jest-junit": "^8.0.0",
"license-check-and-add": "^2.3.6",
"jest-junit": "^10.0.0",
"license-check-and-add": "^3.0.3",
"lodash": "^4.17.15",

@@ -50,3 +50,3 @@ "prettier": "^1.18.2",

"format-check": "prettier --config prettier.config.js --check \"**/*\"",
"copyrightheaders": "license-check-and-add",
"copyrightheaders": "license-check-and-add check -f copyright-header.config.json",
"precheckin": "yarn format-check && yarn lint && yarn build && yarn test && yarn copyrightheaders",

@@ -75,45 +75,3 @@ "watch:build": "tsc -p . --watch",

},
"homepage": "https://github.com/Microsoft/axe-sarif-converter#readme",
"license-check-and-add-config": {
"folder": "./",
"license": "copyright-header.txt",
"exact_paths_method": "EXCLUDE",
"exact_paths": [
"./.git",
"./.github",
"./.vscode",
"./copyright-header.txt",
"./dist",
"./node_modules",
"./src/test-resources/",
"./test-results"
],
"file_type_method": "INCLUDE",
"file_types": [
".ts",
".d.ts",
".js",
".yaml",
".md",
".txt",
".xml"
],
"insert_license": false,
"license_formats": {
"yaml|npmrc": {
"eachLine": {
"prepend": "# "
}
},
"md": {
"prepend": "<!--",
"append": "-->"
},
"ts|d.ts|js": {
"eachLine": {
"prepend": "// "
}
}
}
}
"homepage": "https://github.com/Microsoft/axe-sarif-converter#readme"
}

29

README.md

@@ -69,3 +69,3 @@ <!--

- axe-sarif-converter version 2.x supports input from version ^3.2.0 of axe-core (tested with 3.2.2 and 3.3.2) and outputs SARIF v2.1
- axe-sarif-converter version 2.x supports input from version ^3.2.0 of axe-core (tested with 3.2.2, 3.3.2, and 3.4.1) and outputs SARIF v2.1
- axe-sarif-converter version 1.x supports input from version >= 3.2.0 < 3.3.0 of axe-core (tested with 3.2.2) and outputs SARIF v2.0

@@ -95,2 +95,29 @@

### Updating axe-core version
This package attempts to maintain backwards compatibility with axe-core versions ^3.2.2. We maintain
test cases using pinned output from multiple axe-core versions under `/src/test-resources/`, so updating
the version of axe-core we support involves generating new output for the new versions.
Ideally we'd specify axe-core as a peer dependency; unfortunately, changing this now would be a breaking
change, so we're waiting to change this until we would need to make a breaking change anyway.
To update the package and test cases to account for a new axe-core version:
1. Update the version of axe-core in `yarn.lock` (_not_ `package.json`); usually dependabot will cover this.
1. Update the versions of axe-cli and axe-core in `src/test-resources/generator/package.json`
1. Generate test resource files for the new version with:
```
cd src/test-resources/generator
yarn install
yarn generate
```
1. Manually compare the diff of `/src/test-resources/basic-axe-vPREVIOUS.sarif` and `/src/test-resources/basic-axe-vNEW.sarif`; the only differences should be the version numbers.
1. Manually compare the diff of `/src/test-resources/w3citylights-axe-vPREVIOUS.sarif` and `/src/test-resources/w3citylights-axe-vNEW.sarif`; in addition to version number differences, you should see some differences based on new/removed rules between the axe versions.
1. Add test cases involving the new files to the integration tests in `src/index.test.ts` and `src/cli.test.ts`
1. Update snapshots (`yarn test -u`)
1. Update this README's `Version numbers` section to note which versions we've tested against.
### Contributor License Agreement

@@ -97,0 +124,0 @@

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc