camomile - npm Package Compare versions

Comparing version 0.0.4 to 1.0.0

package.json

 {
-	"name": "camomile",
-	"version": "0.0.4",
-	"description": "The workflow automation toolset",
-	"license": "BSD-3-Clause",
-	"author": "Nikita Karamov <nick@karamoff.dev>",
-	"repository": "camomilejs/camomile",
-	"type": "module",
-	"bin": {
-		"camomile": "./dist/bin/camomile.js"
-	},
-	"exports": "./dist/camomile.js",
-	"files": [
-		"dist"
-	],
-	"engines": {
-		"node": "^12 || ^14 || >=16"
-	},
-	"scripts": {
-		"build": "rollup --config rollup.config.ts --configPlugin typescript",
-		"dev": "rollup --config rollup.config.ts --configPlugin typescript --watch",
-		"lint": "eslint .",
-		"prettier": "prettier --check .",
-		"test": "echo 'No tests yet...'"
-	},
-	"dependencies": {
-		"commander": "^8.1.0"
-	},
-	"devDependencies": {
-		"@rollup/plugin-commonjs": "^20.0.0",
-		"@rollup/plugin-json": "^4.1.0",
-		"@rollup/plugin-typescript": "^8.2.5",
-		"@typescript-eslint/eslint-plugin": "^4.29.2",
-		"@typescript-eslint/parser": "^4.29.2",
-		"eslint": "^7.32.0",
-		"eslint-config-prettier": "^8.3.0",
-		"eslint-config-xo": "^0.38.0",
-		"eslint-config-xo-typescript": "^0.44.0",
-		"eslint-plugin-eslint-comments": "^3.2.0",
-		"eslint-plugin-import": "^2.24.0",
-		"eslint-plugin-no-use-extend-native": "^0.5.0",
-		"eslint-plugin-node": "^11.1.0",
-		"eslint-plugin-promise": "^5.1.0",
-		"eslint-plugin-unicorn": "^35.0.0",
-		"np": "^7.5.0",
-		"prettier": "^2.3.2",
-		"rollup": "^2.56.2",
-		"typescript": "^4.3.5"
-	},
-	"keywords": [
-		"camomile",
-		"build",
-		"build-system",
-		"build-tool",
-		"automation",
-		"pipeline"
-	]
+  "name": "camomile",
+  "version": "1.0.0",
+  "description": "Node.js HTTP image proxy to route images through SSL",
+  "license": "MIT",
+  "keywords": [
+    "camo",
+    "camomile",
+    "node",
+    "proxy",
+    "security",
+    "ssl",
+    "unified"
+  ],
+  "repository": "rehypejs/camomile",
+  "bugs": "https://github.com/rehypejs/camomile/issues",
+  "funding": {
+    "type": "opencollective",
+    "url": "https://opencollective.com/unified"
+  },
+  "author": "Merlijn Vos <merlijn@soverin.net>",
+  "contributors": [
+    "Merlijn Vos <merlijn@soverin.net>"
+  ],
+  "type": "module",
+  "exports": "./index.js",
+  "files": [
+    "lib/",
+    "index.d.ts",
+    "index.d.ts.map",
+    "index.js"
+  ],
+  "dependencies": {
+    "ipaddr.js": "^2.0.0",
+    "undici": "^5.0.0"
+  },
+  "devDependencies": {
+    "@types/node": "^20.0.0",
+    "c8": "^8.0.0",
+    "prettier": "^3.0.0",
+    "remark-cli": "^11.0.0",
+    "remark-preset-wooorm": "^9.0.0",
+    "type-coverage": "^2.0.0",
+    "typescript": "^5.0.0",
+    "xo": "^0.56.0"
+  },
+  "scripts": {
+    "build": "tsc --build --clean && tsc --build && type-coverage",
+    "format": "remark . --frail --output --quiet && prettier . --log-level warn --write && xo --fix",
+    "test": "npm run build && npm run format && npm run test-coverage",
+    "test-api": "node --conditions development test.js",
+    "test-coverage": "c8 --100 --reporter lcov npm run test-api"
+  },
+  "prettier": {
+    "bracketSpacing": false,
+    "semi": false,
+    "singleQuote": true,
+    "tabWidth": 2,
+    "trailingComma": "none",
+    "useTabs": false
+  },
+  "remarkConfig": {
+    "plugins": [
+      "remark-preset-wooorm"
+    ]
+  },
+  "typeCoverage": {
+    "atLeast": 100,
+    "detail": true,
+    "ignoreCatch": true,
+    "strict": true
+  },
+  "xo": {
+    "prettier": true,
+    "rules": {
+      "no-await-in-loop": "off",
+      "no-constant-condition": "off",
+      "unicorn/prefer-event-target": "off"
+    }
+  }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

No bug tracker

Maintenance

Package does not have a linked bug tracker in package.json.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No tests

Quality

Package does not have any tests. This is a strong signal of a poorly maintained or low quality package.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

54865

increased by768.12%

Dev dependency count

8

decreased by-57.89%

Number of package files

15

increased by200%

Lines of code

1306

increased by4112.9%

Number of low quality alerts

1

decreased by-66.67%

Number of lines in readme file

357

increased by561.11%

Worsened metrics

Dependency count

2

increased by100%

Number of medium supply chain risk alerts

3

increased byInfinity%

Dependency changes

• + Addedipaddr.js@^2.0.0

• + Addedundici@^5.0.0

• + Added@fastify/busboy@2.1.1(transitive)

• + Addedipaddr.js@2.2.0(transitive)

• + Addedundici@5.28.4(transitive)

• - Removedcommander@^8.1.0

• - Removedcommander@8.3.0(transitive)