confi - npm Package Compare versions

Comparing version 7.1.1 to 8.0.0

lib/confi.js

@@ -13,2 +13,3 @@ 'use strict';
 const parseDir = require('parse-dir');
+const ms = require('ms');
 
@@ -21,2 +22,3 @@ const confPath = process.env.CONFI_PATH || path.join(cwd, 'conf');
   context: {},
+  config: {},
   helpers: {}
@@ -99,5 +101,24 @@ };
     config(defaultConf, packageOpts, envConf, userConf, urlConf, envVarConf, fileConf, opts, done) {
-      const config = aug(defaultConf, packageOpts, envConf, fileConf, urlConf, userConf, envVarConf, opts.context);
+      const config = aug(defaultConf, packageOpts, envConf, fileConf, urlConf, userConf, envVarConf, opts.config);
       config.env = opts.env;
       return done(null, config);
+    },
+    defaultHelpers(done) {
+      done(null, {
+        ms,
+        getEnv(key, fallback) {
+          return process.env[key] || fallback;
+        }
+      });
+    },
+    context(opts, defaultHelpers, done) {
+      const context = aug({
+        env: opts.env,
+        CWD: cwd,
+        ENV: process.env || {}
+      }, opts.context, defaultHelpers, opts.helpers);
+      done(null, context);
+    },
+    varson(context, config, done) {
+      done(null, varson(config, context));
     }
@@ -108,8 +129,3 @@ }, (err, results) => {
     }
-    const context = Object.assign({
-      env: results.opts.env,
-      CWD: cwd,
-      ENV: process.env || {}
-    }, results.opts.helpers);
-    return callback(null, varson(results.config, context));
+    return callback(null, results.varson);
   });
@@ -116,0 +132,0 @@ };

package.json

 {
   "name": "confi",
   "description": "a simple configuration library",
-  "version": "7.1.1",
+  "version": "8.0.0",
   "homepage": "https://github.com/firstandthird/confi",
@@ -16,4 +16,5 @@ "author": "First+Third",
     "js-yaml": "^3.8.4",
+    "ms": "^2.0.0",
     "parse-dir": "2.0.0",
-    "varson": "1.0.1",
+    "varson": "^2.0.0",
     "wreck": "^12.2.0"
@@ -20,0 +21,0 @@ },

New alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

108319

increased by26.5%

Lines of code

211

increased by8.21%

Worsened metrics

Dependency count

8

increased by14.29%

Number of low supply chain risk alerts

5

increased by25%

Dependency changes

• + Addedms@^2.0.0

• + Addedaug@3.1.1(transitive)

• + Addedlodash.get@4.4.2(transitive)

• + Addedms@2.1.3(transitive)

• + Addedvarson@2.1.1(transitive)

• - Removedarray-buffer-byte-length@1.0.2(transitive)

• - Removedarraybuffer.prototype.slice@1.0.4(transitive)

• - Removedasync-function@1.0.0(transitive)

• - Removedavailable-typed-arrays@1.0.7(transitive)

• - Removedcall-bind@1.0.8(transitive)

• - Removedcall-bind-apply-helpers@1.0.2(transitive)

• - Removedcall-bound@1.0.3(transitive)

• - Removeddata-view-buffer@1.0.2(transitive)

• - Removeddata-view-byte-length@1.0.2(transitive)

• - Removeddata-view-byte-offset@1.0.1(transitive)

• - Removeddefine-data-property@1.1.4(transitive)

• - Removeddefine-properties@1.2.1(transitive)

• - Removeddunder-proto@1.0.1(transitive)

• - Removedes-abstract@1.23.9(transitive)

• - Removedes-define-property@1.0.1(transitive)

• - Removedes-errors@1.3.0(transitive)

• - Removedes-object-atoms@1.1.1(transitive)

• - Removedes-set-tostringtag@2.1.0(transitive)

• - Removedes-to-primitive@1.3.0(transitive)

• - Removedfor-each@0.3.5(transitive)

• - Removedfunction-bind@1.1.2(transitive)

• - Removedfunction.prototype.name@1.1.8(transitive)

• - Removedfunctions-have-names@1.2.3(transitive)

• - Removedget-intrinsic@1.3.0(transitive)

• - Removedget-proto@1.0.1(transitive)

• - Removedget-symbol-description@1.1.0(transitive)

• - Removedglobalthis@1.0.4(transitive)

• - Removedgopd@1.2.0(transitive)

• - Removedhas-bigints@1.1.0(transitive)

• - Removedhas-property-descriptors@1.0.2(transitive)

• - Removedhas-proto@1.2.0(transitive)

• - Removedhas-symbols@1.1.0(transitive)

• - Removedhas-tostringtag@1.0.2(transitive)

• - Removedhasown@2.0.2(transitive)

• - Removedinternal-slot@1.1.0(transitive)

• - Removedis-array-buffer@3.0.5(transitive)

• - Removedis-async-function@2.1.1(transitive)

• - Removedis-bigint@1.1.0(transitive)

• - Removedis-boolean-object@1.2.2(transitive)

• - Removedis-callable@1.2.7(transitive)

• - Removedis-data-view@1.0.2(transitive)

• - Removedis-date-object@1.1.0(transitive)

• - Removedis-finalizationregistry@1.1.1(transitive)

• - Removedis-generator-function@1.1.0(transitive)

• - Removedis-map@2.0.3(transitive)

• - Removedis-number-object@1.1.1(transitive)

• - Removedis-regex@1.2.1(transitive)

• - Removedis-set@2.0.3(transitive)

• - Removedis-shared-array-buffer@1.0.4(transitive)

• - Removedis-string@1.1.1(transitive)

• - Removedis-symbol@1.1.1(transitive)

• - Removedis-typed-array@1.1.15(transitive)

• - Removedis-weakmap@2.0.2(transitive)

• - Removedis-weakref@1.1.1(transitive)

• - Removedis-weakset@2.0.4(transitive)

• - Removedisarray@2.0.5(transitive)

• - Removedmath-intrinsics@1.1.0(transitive)

• - Removedobject-inspect@1.13.4(transitive)

• - Removedobject-keys@1.1.1(transitive)

• - Removedobject.assign@4.1.7(transitive)

• - Removedown-keys@1.0.1(transitive)

• - Removedpossible-typed-array-names@1.1.0(transitive)

• - Removedreflect.getprototypeof@1.0.10(transitive)

• - Removedregexp.prototype.flags@1.5.4(transitive)

• - Removedsafe-array-concat@1.1.3(transitive)

• - Removedsafe-push-apply@1.0.0(transitive)

• - Removedsafe-regex-test@1.1.0(transitive)

• - Removedset-function-length@1.2.2(transitive)

• - Removedset-function-name@2.0.2(transitive)

• - Removedset-proto@1.0.0(transitive)

• - Removedside-channel@1.1.0(transitive)

• - Removedside-channel-list@1.0.0(transitive)

• - Removedside-channel-map@1.0.1(transitive)

• - Removedside-channel-weakmap@1.0.2(transitive)

• - Removedstring.prototype.trim@1.2.10(transitive)

• - Removedstring.prototype.trimend@1.0.9(transitive)

• - Removedstring.prototype.trimstart@1.0.8(transitive)

• - Removedtraverse@0.6.11(transitive)

• - Removedtyped-array-buffer@1.0.3(transitive)

• - Removedtyped-array-byte-length@1.0.3(transitive)

• - Removedtyped-array-byte-offset@1.0.4(transitive)

• - Removedtyped-array-length@1.0.7(transitive)

• - Removedtypedarray.prototype.slice@1.0.5(transitive)

• - Removedunbox-primitive@1.1.0(transitive)

• - Removedvarson@1.0.1(transitive)

• - Removedwhich-boxed-primitive@1.1.1(transitive)

• - Removedwhich-builtin-type@1.2.1(transitive)

• - Removedwhich-collection@1.0.2(transitive)

• - Removedwhich-typed-array@1.1.18(transitive)

• Updatedvarson@^2.0.0