confit - npm Package Compare versions

Comparing version 2.0.3 to 2.0.4

dist/lib/provider.js

@@ -107,3 +107,7 @@ "use strict";
 
-                result[env] = process.env[env];
+                //env:env is decided by process.env.NODE_ENV.
+                //Not allowing process.env.env to override the env:env value.
+                if (env !== "env") {
+                    result[env] = process.env[env];
+                }
             }
@@ -110,0 +114,0 @@ } catch (err) {

lib/provider.js

@@ -50,3 +50,7 @@ /*───────────────────────────────────────────────────────────────────────────*\
         for (let env of Object.keys(process.env)) {
-            result[env] = process.env[env];
+            //env:env is decided by process.env.NODE_ENV.
+            //Not allowing process.env.env to override the env:env value.
+            if (env !== 'env') {
+                result[env] = process.env[env];
+            }
         }
@@ -83,2 +87,1 @@
 }
-

package.json

 {
   "name": "confit",
-  "version": "2.0.3",
+  "version": "2.0.4",
   "description": "Environment-aware configuration.",
@@ -49,4 +49,4 @@ "main": "dist/index.js",
     "shortstop-handlers": "^1.0.0",
-    "shush": "~0.0.1"
+    "shush": "^1.0.0"
   }
 }

README.md

@@ -6,3 +6,3 @@ confit
 
-[![Build Status](https://travis-ci.org/krakenjs/confit.svg?branch=master)](https://travis-ci.org/krakenjs/confit)  
+[![Build Status](https://travis-ci.org/krakenjs/confit.svg?branch=2.x)](https://travis-ci.org/krakenjs/confit)  
 
@@ -12,6 +12,7 @@ Simple, environment-based configuration. `confit` loads a default JSON
 It will also process the loaded files using any configured
-[shortstop](https://github.com/paypal/shortstop) protocol handlers.
-(See **Options** below.)
+[shortstop](https://github.com/paypal/shortstop) protocol handlers—see **Options** below.
 
+`confit` adds support for adding JavaScript-style comments in your json files as each file is processed by [shush](https://github.com/totherik/shush) before being merged into your config.
 
+
 ## Usage
@@ -18,0 +19,0 @@ ```javascript

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

62494

increased by0.91%

Lines of code

979

increased by0.82%

Number of lines in readme file

171

increased by0.59%

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Addedshush@1.0.4(transitive)

• + Addedstrip-json-comments@3.1.1(transitive)

• - Removedcaller@0.0.1(transitive)

• - Removeddeep-equal@0.1.2(transitive)

• - Removeddefined@0.0.0(transitive)

• - Removedjsonify@0.0.1(transitive)

• - Removedresumer@0.0.0(transitive)

• - Removedshush@0.0.1(transitive)

• - Removedstrip-json-comments@0.1.3(transitive)

• - Removedtape@2.3.3(transitive)

• - Removedthrough@2.3.8(transitive)

• Updatedshush@^1.0.0