babel-plugin-import-static-files - npm Package Compare versions

Comparing version 1.0.2 to 1.0.3

lib/index.js

@@ -11,2 +11,4 @@ 'use strict';
 
+var _path2 = _interopRequireDefault(_path);
+
 var _transform = require('./transform');
@@ -20,2 +22,3 @@
   baseDir: '/static',
+  hash: false,
   extensions: ['.gif', '.jpeg', '.jpg', '.png', '.svg']
@@ -32,2 +35,6 @@ };
 
+    if (options.baseDir) {
+      options.baseDir = options.baseDir.replace(/[\/\\]+/g, _path2.default.sep);
+    }
+
     (0, _transform2.default)(p, t, state, options, absPath, calleeName);
@@ -34,0 +41,0 @@ }

lib/transform.js

@@ -22,11 +22,19 @@ 'use strict';
 function getHash(str) {
-  return _crypto2.default.createHash('sha1').update(str, 'utf8').digest('hex').slice(0, 8);
+  return _crypto2.default.createHash('md5').update(str, 'utf8').digest('hex');
 }
 
 function getFile(state, absPath, opts) {
-  var root = process.env.APP_ROOT ? _path2.default.resolve(process.env.APP_ROOT) : state.file.opts.sourceRoot || process.cwd();
-  var file = absPath.replace(root, '');
-  console.log(process.env.APP_ROOT, process.cwd(), root, file, _path2.default.join(root, file), _path2.default.join(opts.baseDir, file));
+  var root = state.file.opts.sourceRoot || process.cwd();
+  var file = void 0;
+
+  if (opts.hash === true) {
+    var content = _fsExtra2.default.readFileSync(absPath, 'utf8');
+    var ext = _path2.default.extname(absPath);
+    file = _path2.default.basename(absPath, ext) + '-' + getHash(content) + ext;
+  } else {
+    file = _path2.default.sep + absPath.substr(root.length).replace(/^[\/\\]+/, '');
+  }
+
   if (opts.baseDir) {
-    file = _path2.default.join(opts.baseDir, file);
+    file = _path2.default.sep + _path2.default.join(opts.baseDir, file).replace(/^[\/\\]+/, '');
     _fsExtra2.default.copySync(absPath, _path2.default.join(root, file));
@@ -46,11 +54,5 @@ }
   var file = getFile(state, absPath, opts);
-  var hash = '';
 
-  if (opts.hash === 1) {
-    var content = _fsExtra2.default.readFileSync(absPath, 'utf8').trim();
-    hash = '?' + getHash(content);
-  }
+  var uri = '' + (opts.baseUri || '') + file;
 
-  var uri = '' + (opts.baseUri || '') + file + hash;
-
   if (calleeName === 'require') {
@@ -57,0 +59,0 @@ p.replaceWith(t.StringLiteral(uri));

package.json

 {
   "name": "babel-plugin-import-static-files",
-  "version": "1.0.2",
+  "version": "1.0.3",
   "description": "Transforms static files import and copy files to /static folder for next.js applications.",
@@ -5,0 +5,0 @@ "main": "lib/index.js",

Fixed alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

29956

increased by219.29%

Number of package files

7

increased by16.67%

Lines of code

95

increased by6.74%

Number of low supply chain risk alerts

1

decreased by-75%

No dependency changes