can-fixture - npm Package Compare versions

Comparing version 2.0.3 to 2.1.0

build.js

@@ -0,1 +1,2 @@
+"use strict";
 var stealTools = require("steal-tools");
@@ -2,0 +3,0 @@ var globalJS = require("steal-tools/lib/build/helpers/global").js;

core.js

@@ -0,1 +1,2 @@
+"use strict";
 // Adds
@@ -181,4 +182,6 @@ var canSet = require("can-set");
 	//!steal-remove-start
-	var json = JSON.stringify(xhrSettings.data);
-	canLog.log("" + xhrSettings.type.toUpperCase() + " " + xhrSettings.url+" "+json.substr(0,50)+" -> handler(req,res)");
+	if(process.env.NODE_ENV !== 'production') {
+		var json = JSON.stringify(xhrSettings.data);
+		canLog.log("" + xhrSettings.type.toUpperCase() + " " + xhrSettings.url+" "+json.substr(0,50)+" -> handler(req,res)");
+	}
 	//!steal-remove-end
@@ -185,0 +188,0 @@

fixture.js

@@ -0,1 +1,2 @@
+"use strict";
 var core = require("./core");
@@ -2,0 +3,0 @@ var fixture = core.add;

helpers/getid.js

@@ -0,1 +1,2 @@
+"use strict";
 // Attemps to guess where the id is in an AJAX call's URL and returns it.
@@ -2,0 +3,0 @@ module.exports = function (xhrSettings, fixtureSettings) {

helpers/legacyStore.js

@@ -0,1 +1,2 @@
+"use strict";
 var getId = require("./getid");
@@ -2,0 +3,0 @@ var canSet = require("can-set");

package.json

 {
   "name": "can-fixture",
-  "version": "2.0.3",
+  "version": "2.1.0",
   "description": "Intercept AJAX requests and simulate responses.",
@@ -35,3 +35,3 @@ "main": "fixture.js",
     "steal-tools": "^1.0.0",
-    "testee": "^0.7.0"
+    "testee": "^0.8.0"
   },
@@ -38,0 +38,0 @@ "repository": {

store.js

@@ -0,1 +1,2 @@
+"use strict";
 var canSet = require("can-set");
@@ -2,0 +3,0 @@ var connect = require("can-connect");

xhr.js

@@ -0,1 +1,2 @@
+"use strict";
 /* global require, window, global */
@@ -2,0 +3,0 @@ /* global setTimeout, clearTimeout, XMLHttpRequest */

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

123688

increased by0.13%

Lines of code

2820

increased by0.32%

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Number of low supply chain risk alerts

1

increased byInfinity%

No dependency changes