clipanion - npm Package Compare versions

Comparing version 2.4.0 to 2.4.1

package.json

 {
   "name": "clipanion",
-  "version": "2.4.0",
-  "main": "lib/advanced",
+  "version": "2.4.1",
+  "main": "lib/index",
   "license": "MIT",
@@ -12,2 +12,3 @@ "devDependencies": {
     "@types/yup": "^0.28.3",
+    "@wessberg/rollup-plugin-ts": "^1.2.24",
     "chai": "^4.2.0",
@@ -17,3 +18,5 @@ "chai-as-promised": "^7.1.1",
     "mocha": "^7.1.2",
+    "rollup": "^2.12.0",
     "ts-node": "^8.10.1",
+    "tslib": "^2.0.0",
     "typescript": "^3.9.2",
@@ -23,3 +26,3 @@ "yup": "^0.28.5"
   "scripts": {
-    "prepack": "rm -rf lib && yarn tsc",
+    "prepack": "rm -rf lib && rollup -c",
     "postpack": "rm -rf lib",
@@ -29,8 +32,7 @@ "test": "FORCE_COLOR=1 mocha --require ts-node/register --extension ts tests"
   "publishConfig": {
-    "main": "lib/advanced"
+    "main": "lib/index"
   },
   "files": [
-    "/lib/**/*",
-    "!/lib/demos/**/*"
+    "lib"
   ]
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 2 instances in 1 package

Improved metrics

Total package byte prevSize

160564

increased by49.23%

Lines of code

3540

increased by52.26%

Number of low supply chain risk alerts

1

decreased by-83.33%

Worsened metrics

Dev dependency count

15

increased by25%

Number of package files

5

decreased by-75%

Number of medium supply chain risk alerts

1

increased byInfinity%

No dependency changes