bigscreen-player
Advanced tools
bigscreen-player - npm Package Compare versions
Comparing version 3.18.1 to 3.18.3
| { | ||
| "name": "bigscreen-player", | ||
| "version": "3.18.1", | ||
| "version": "3.18.3", | ||
| "description": "Simplified media playback for bigscreen devices.", | ||
@@ -13,10 +13,11 @@ "main": "script/bigscreenplayer.js", | ||
| "lint:code:changed": "git diff-index --name-only HEAD | egrep '.js$' | xargs eslint", | ||
| "build:dist": "npm run build:dist:clean && npm run build:version && mkdir dist && npm run build:copy:script && npm run build:copy:files", | ||
| "build:dist:clean": "rm -fR ./dist", | ||
| "build:version": "node ./buildVersion.js", | ||
| "pre-release:patch": "npm version patch --no-git-tag --no-git-commit && npm run build:version", | ||
| "pre-release:minor": "npm version minor --no-git-tag --no-git-commit && npm run build:version", | ||
| "pre-release:major": "npm version major --no-git-tag --no-git-commit && npm run build:version" | ||
| "build:copy:script": "cp -R ./script/ ./dist/script/", | ||
| "build:copy:files": "cp package.json package-lock.json CONTRIBUTING.md README.md LICENSE ./dist/", | ||
| "postinstall": "test -f ./buildVersion.js && npm run build:version" | ||
| }, | ||
| "husky": { | ||
| "hooks": { | ||
| "pre-commit": "npm test", | ||
| "pre-push": "npm test" | ||
@@ -70,2 +71,2 @@ } | ||
| "homepage": "https://github.com/bbc/bigscreen-player#readme" | ||
| } | ||
| } |
@@ -70,9 +70,4 @@ define( | ||
| function shouldAutoResume (seekTime, seekableRangeStart) { | ||
| return seekTime - seekableRangeStart <= AUTO_RESUME_WINDOW_START_CUSHION_SECONDS; | ||
| } | ||
| return { | ||
| autoResumeAtStartOfRange: autoResumeAtStartOfRange, | ||
| shouldAutoResume: shouldAutoResume, | ||
| canPause: canPause, | ||
@@ -79,0 +74,0 @@ canSeek: canSeek |
| define('bigscreenplayer/version', | ||
| function () { | ||
| return '3.18.1'; | ||
| return '3.18.3'; | ||
| } | ||
| ); |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-100%
0
- Number of medium supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Total package byte prevSize
- decreased by-65.36%
225651
- Number of package files
- decreased by-43.33%
51
- Lines of code
- decreased by-60.39%
5650
- Number of high supply chain risk alerts
- increased by100%
2