caravaggio - npm Package Compare versions

Comparing version 2.7.2 to 2.8.0

CHANGELOG.md

 # Changelog
 
+## 2.8.0
+  - Supprot Node.js v12
+  - Update sharp to version 0.24
+
 ## 2.7.2
@@ -10,3 +14,3 @@ - Moved documentation on its own repository
     - This avoids to have external dependencies at runtime. Useful for future usage.
-  - Remove documentation from the project. Now it has its own project at https://gitlab.com/ramiel/caravaggio
+  - Remove documentation from the project. Now it has its own project at https://gitlab.com/ramiel/caravaggio-docs
 
@@ -13,0 +17,0 @@ ## 2.7.0

package.json

 {
   "name": "caravaggio",
-  "version": "2.7.2",
+  "version": "2.8.0",
   "description": "A blazing fast image processor service",
   "main": "index.js",
-  "bin": "bin/caravaggio",
+  "bin": {
+    "caravaggio": "bin/caravaggio"
+  },
   "scripts": {
@@ -20,3 +22,6 @@ "start": "NODE_ENV=production bin/caravaggio",
   },
-  "repository": "gitlab:ramiel/caravaggio",
+  "repository": {
+    "type": "git",
+    "url": "git+https://gitlab.com/ramiel/caravaggio.git"
+  },
   "keywords": [
@@ -45,3 +50,3 @@ "image",
     "pino-pretty": "^2.2.0",
-    "sharp": "^0.21.1",
+    "sharp": "^0.24.0",
     "yargs": "12.0.2"
@@ -48,0 +53,0 @@ },

src/normalizers/duotone.js

@@ -56,5 +56,6 @@
   return originalImage
-    .overlayWith(duotoneWithTransparency, {
+    .composite([{
+      input: duotoneWithTransparency,
       raw: { width, height, channels: 4 },
-    })
+    }])
     .raw()
@@ -61,0 +62,0 @@ .toBuffer({ resolveWithObject: true })

src/normalizers/overlay.js

@@ -63,3 +63,3 @@ const cohercer = require('../cohercer');
             }
-            return sharp.overlayWith(overlay, options);
+            return sharp.composite([{ input: overlay, ...options }]);
           },
@@ -66,0 +66,0 @@ },

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

73690

increased by0.24%

Lines of code

1719

increased by0.06%

Number of low supply chain risk alerts

7

decreased by-12.5%

Dependency changes

• + Addedchownr@2.0.0(transitive)

• + Addedfs-minipass@2.1.0(transitive)

• + Addedminipass@3.3.65.0.0(transitive)

• + Addedminizlib@2.1.2(transitive)

• + Addedmkdirp@1.0.4(transitive)

• + Addedsemver@7.6.3(transitive)

• + Addedsharp@0.24.1(transitive)

• + Addedtar@6.2.1(transitive)

• + Addedyallist@4.0.0(transitive)

• - Removedbindings@1.5.0(transitive)

• - Removedfile-uri-to-path@1.0.0(transitive)

• - Removedfs-copy-file-sync@1.1.1(transitive)

• - Removedfs-minipass@1.2.7(transitive)

• - Removedminipass@2.9.0(transitive)

• - Removedminizlib@1.3.3(transitive)

• - Removedmkdirp@0.5.6(transitive)

• - Removedsharp@0.21.3(transitive)

• - Removedtar@4.4.19(transitive)

• - Removedyallist@3.1.1(transitive)

• Updatedsharp@^0.24.0