browser-pack - npm Package Compare versions

Comparing version 0.9.2 to 0.9.3

bin/cmd.js

 #!/usr/bin/env node
 
-var pack = require('./')();
+var pack = require('../')();
 process.stdin.pipe(pack).pipe(process.stdout);

index.js

@@ -27,3 +27,2 @@ var JSONStream = require('JSONStream');
     var entries = [];
-    var order = []; 
     
@@ -53,3 +52,7 @@ var lineno = 1 + newlinesIn(prelude);
             '\n},',
-            JSON.stringify(row.deps || {}),
+            '{' + Object.keys(row.deps || {}).sort().map(function (key) {
+                return JSON.stringify(key) + ':'
+                    + JSON.stringify(row.deps[key])
+                ;
+            }).join(',') + '}',
             ']'
@@ -56,0 +59,0 @@ ].join('');

package.json

 {
     "name": "browser-pack",
-    "version": "0.9.2",
+    "version": "0.9.3",
     "description": "pack node-style source files from a json stream into a browser bundle",
@@ -5,0 +5,0 @@ "main": "index.js",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

21479

increased by4.48%

Number of package files

23

increased by4.55%

Lines of code

460

increased by6.98%

Worsened metrics

Number of medium supply chain risk alerts

10

increased by11.11%

No dependency changes