bridge - npm Package Compare versions
Comparing version 0.1.1 to 1.0.0-alpha1
| { | ||
| "author": "", | ||
| "name": "bridge", | ||
| "description": "Bridge for JS", | ||
| "version": "0.1.1", | ||
| "repository": { | ||
| "type": "git", | ||
| "url": "git://github.com/Flotype/mqb-prototype.git" | ||
| "version": "1.0.0-alpha1", | ||
| "license": "APACHE-2.0", | ||
| "author": "Invertase <oss@invertase.io> (http://invertase.io)", | ||
| "scripts": { | ||
| "precommit": "lint-staged", | ||
| "lint": "eslint ./src ./server ", | ||
| "lint-fix": "eslint --fix ./src ./server", | ||
| "postinstall": "opencollective postinstall || exit 0" | ||
| }, | ||
| "main": "lib/bridge.js", | ||
| "engines": { | ||
| "node": "~0.6.1" | ||
| "optionalDependencies": { | ||
| "detox": "^7.2.0", | ||
| "mocha": "^4.0.0" | ||
| }, | ||
| "peerDependencies": { | ||
| "detox": "^7.2.0", | ||
| "mocha": "^4.0.0" | ||
| }, | ||
| "dependencies": { | ||
| "ws": "^5.1.0", | ||
| "chalk": "^2.3.2", | ||
| "source-map": "^0.7.2", | ||
| "error-stack-parser": "^2.0.1", | ||
| "istanbul-lib-coverage": "^1.2.0" | ||
| }, | ||
| "rnpm": { | ||
| "android": { | ||
| "buildPatch": "compile project(':bridge')", | ||
| "packageImportPath": "import io.invertase.bridge.RNBridgePackage;", | ||
| "packageInstance": "new RNBridgePackage()" | ||
| } | ||
| }, | ||
| "devDependencies": { | ||
| "uglify-js": "*" | ||
| "eslint": "^4.18.2", | ||
| "prettier": "^1.11.1", | ||
| "lint-staged": "^7.0.0", | ||
| "babel-eslint": "^8.2.2", | ||
| "eslint-plugin-react": "^7.7.0", | ||
| "eslint-plugin-import": "^2.9.0", | ||
| "eslint-config-airbnb": "^16.1.0", | ||
| "eslint-plugin-prettier": "^2.5.0", | ||
| "eslint-plugin-jsx-a11y": "^6.0.2", | ||
| "eslint-config-prettier": "^2.9.0", | ||
| "eslint-plugin-flowtype": "^2.46.1" | ||
| }, | ||
| "lint-staged": { | ||
| "src/{components|helpers|pages}/**/*.js": [ | ||
| "eslint --fix", | ||
| "git add" | ||
| ], | ||
| "server/**/*.js": [ | ||
| "eslint --fix", | ||
| "git add" | ||
| ], | ||
| "*.{json,md,scss}": [ | ||
| "prettier --write", | ||
| "git add" | ||
| ] | ||
| }, | ||
| "collective": { | ||
| "type": "opencollective", | ||
| "url": "https://opencollective.com/react-native-firebase" | ||
| } | ||
| } |
@@ -1,33 +0,3 @@ | ||
| #Flotype Bridge for Javascript | ||
| Flotype Bridge is a unified messaging system that allows you to easily build cross-language services to share data and realtime updates among your servers and your clients | ||
| # Bridge | ||
| ##Node.js Installation | ||
| Quick install: Using the [Node Package Manager](http://npmjs.org). | ||
| npm install bridge | ||
| Source install: Clone this repository using `git clone git@bitbucket.org:flotype/bridge-js.git` and install using the npm installer, `npm install bridge-js/` | ||
| ##Browser Use | ||
| Flotype Bridge for Javascript can be used in the browser. The javascript is hosted on Flotype servers, but can be served from your own server or CDN of your choice. | ||
| http://flotype.com/js/bridge.min.js | ||
| To use Bridge in the browser, simply add a script tag in your html. `<script type="text/javascript" src=" http://flotype.com/js/bridge.min.js | ||
| "></script>` | ||
| ###Dependencies | ||
| This library has no external dependencies. | ||
| ##Documentation and Support | ||
| * API Reference: http://flotype.com/docs/api/js/ | ||
| * Getting Started: http://www.flotype.com/docs/gettingstarted/js/ | ||
| * About Flotype and Flotype Bridge: http://www.flotype.com/ | ||
| The `examples` directory of this library contains sample applications for Flotype Bridge. | ||
| Support is available in #flotype on Freenode IRC or the Flotype Bridge Google Group. | ||
| ##License | ||
| Flotype Bridge is made available under the MIT/X11 license. See LICENSE file for details. | ||
| TODO |
New alerts
Install scripts
Supply chain riskInstall scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 1 instance in 1 package
No repository
Supply chain riskPackage does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.
Found 1 instance in 1 package
Fixed alerts
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
No contributors or author data
MaintenancePackage does not specify a list of contributors or an author in package.json.
Found 1 instance in 1 package
Improved metrics
- Number of low maintenance alerts
- decreased by-50%
1
- Number of low supply chain risk alerts
- decreased by-92.68%
3
- Number of medium supply chain risk alerts
- decreased by-40%
3
Worsened metrics
- Total package byte prevSize
- decreased by-90.05%
30617
- Dependency count
- increased byInfinity%
9
- Dev dependency count
- increased by1000%
11
- Number of package files
- decreased by-48.98%
25
- Lines of code
- decreased by-84.68%
566
- Number of lines in readme file
- decreased by-88.24%
4
- Number of high supply chain risk alerts
- increased byInfinity%
1
Dependency changes
+ Addedchalk@^2.3.2
+ Addederror-stack-parser@^2.0.1
+ Addedistanbul-lib-coverage@^1.2.0
+ Addedsource-map@^0.7.2
+ Addedws@^5.1.0
+ Addedansi-regex@2.1.1(transitive)
+ Addedansi-styles@3.2.1(transitive)
+ Addedaproba@1.2.0(transitive)
+ Addedare-we-there-yet@1.1.7(transitive)
+ Addedasync-limiter@1.0.1(transitive)
+ Addedbalanced-match@1.0.2(transitive)
+ Addedbluebird@3.5.5(transitive)
+ Addedbrace-expansion@1.1.11(transitive)
+ Addedbrowser-stdout@1.3.0(transitive)
+ Addedchalk@2.4.2(transitive)
+ Addedchild-process-promise@2.2.1(transitive)
+ Addedcode-point-at@1.1.0(transitive)
+ Addedcolor-convert@1.9.3(transitive)
+ Addedcolor-name@1.1.3(transitive)
+ Addedcommander@2.11.02.20.3(transitive)
+ Addedconcat-map@0.0.1(transitive)
+ Addedconsole-control-strings@1.1.0(transitive)
+ Addedcore-util-is@1.0.3(transitive)
+ Addedcross-spawn@4.0.2(transitive)
+ Addeddebug@3.1.0(transitive)
+ Addeddelegates@1.0.0(transitive)
+ Addeddetox@7.4.3(transitive)
+ Addeddetox-server@7.0.0(transitive)
+ Addeddiff@3.3.1(transitive)
+ Addederror-stack-parser@2.1.4(transitive)
+ Addedescape-string-regexp@1.0.5(transitive)
+ Addedfs-extra@4.0.3(transitive)
+ Addedfs.realpath@1.0.0(transitive)
+ Addedgauge@2.7.4(transitive)
+ Addedget-port@2.1.0(transitive)
+ Addedglob@7.1.2(transitive)
+ Addedgraceful-fs@4.2.11(transitive)
+ Addedgrowl@1.10.3(transitive)
+ Addedhas-flag@2.0.03.0.0(transitive)
+ Addedhas-unicode@2.0.1(transitive)
+ Addedhe@1.1.1(transitive)
+ Addedinflight@1.0.6(transitive)
+ Addedinherits@2.0.4(transitive)
+ Addedini@1.3.8(transitive)
+ Addedis-fullwidth-code-point@1.0.0(transitive)
+ Addedisarray@1.0.0(transitive)
+ Addedisexe@2.0.0(transitive)
+ Addedistanbul-lib-coverage@1.2.1(transitive)
+ Addedjsonfile@4.0.0(transitive)
+ Addedlodash@4.17.21(transitive)
+ Addedlru-cache@4.1.5(transitive)
+ Addedminimatch@3.1.2(transitive)
+ Addedminimist@0.0.81.2.8(transitive)
+ Addedmkdirp@0.5.1(transitive)
+ Addedmocha@4.1.0(transitive)
+ Addedms@2.0.0(transitive)
+ Addednode-version@1.2.0(transitive)
+ Addednpmlog@4.1.2(transitive)
+ Addednumber-is-nan@1.0.1(transitive)
+ Addedobject-assign@4.1.1(transitive)
+ Addedonce@1.4.0(transitive)
+ Addedoptions@0.0.6(transitive)
+ Addedpath-is-absolute@1.0.1(transitive)
+ Addedpinkie@2.0.4(transitive)
+ Addedpinkie-promise@2.0.1(transitive)
+ Addedprocess-nextick-args@2.0.1(transitive)
+ Addedpromise-polyfill@6.1.0(transitive)
+ Addedproper-lockfile@3.2.0(transitive)
+ Addedpseudomap@1.0.2(transitive)
+ Addedreadable-stream@2.3.8(transitive)
+ Addedretry@0.12.0(transitive)
+ Addedsafe-buffer@5.1.2(transitive)
+ Addedset-blocking@2.0.0(transitive)
+ Addedshell-utils@1.0.10(transitive)
+ Addedsignal-exit@3.0.7(transitive)
+ Addedsource-map@0.7.4(transitive)
+ Addedstackframe@1.3.4(transitive)
+ Addedstring-width@1.0.2(transitive)
+ Addedstring_decoder@1.1.1(transitive)
+ Addedstrip-ansi@3.0.1(transitive)
+ Addedsupports-color@4.4.05.5.0(transitive)
+ Addedtail@1.4.0(transitive)
+ Addedtelnet-client@0.15.3(transitive)
+ Addedultron@1.0.2(transitive)
+ Addeduniversalify@0.1.2(transitive)
+ Addedutil-deprecate@1.0.2(transitive)
+ Addedwhich@1.3.1(transitive)
+ Addedwide-align@1.1.5(transitive)
+ Addedwrappy@1.0.2(transitive)
+ Addedws@1.1.55.2.4(transitive)
+ Addedyallist@2.1.2(transitive)