craze - npm Package Compare versions

Comparing version 1.0.0 to 2.0.0

package.json

 {
   "name": "craze",
-  "version": "1.0.0",
-  "description": "Next gen CSS.",
+  "version": "2.0.0",
+  "description": "",
   "main": "index.js",
   "scripts": {
-    "test": "jest tests",
-    "craze": "node bin/craze"
+    "test": "echo \"Error: no test specified\" && exit 1"
   },
-  "bin": {
-    "craze": "bin/craze"
-  },
-  "author": "Jamen Marz",
-  "license": "MIT",
-  "dependencies": {},
-  "devDependencies": {
-    "jest-cli": "latest"
-  },
   "repository": {
     "type": "git",
-    "url": "git+https://github.com/jamen/craze.git"
+    "url": "git+https://github.com/npm/deprecate-holder.git"
   },
-  "keywords": [
-    "css",
-    "preprocessor"
-  ],
+  "author": "",
+  "license": "ISC",
   "bugs": {
-    "url": "https://github.com/jamen/craze/issues"
+    "url": "https://github.com/npm/deprecate-holder/issues"
   },
-  "homepage": "https://github.com/jamen/craze#readme",
-  "jest": {
-    "testDirectoryName": "tests"
-  }
+  "homepage": "https://github.com/npm/deprecate-holder#readme"
 }

README.md

@@ -1,33 +0,5 @@
-# Craze
-Next generation CSS.
+# Deprecated Package
 
-Instead of transpiling directly to CSS like most preprocessors, Craze compiles to a SPV (Selector, Property, Value) tree, which can then be compiled to CSS.
+This package is no longer supported and has been deprecated. To avoid malicious use, npm is hanging on to the package name.
 
-This allows more opportunities for middleware to interact with the CSS directly through a easy interface.
-
-## Installation
-```
-$ npm install -g craze
-```
-
-## Example
-Programmatic usage:
-```javascript
-Selector('.foo, .bar', [
-  Property('background-color', Value('#000')),
-  Property('border', [
-    Value(1, 'px'),
-    Value('solid'),
-    Value('#FFF')
-  ])
-]);
-```
-
-Compiled:
-
-```css
-.foo, .bar {
-  background-color:#000;
-  border:1px solid #FFF;
-}
-```
+Please contact support@npmjs.com if you have questions about this package.

New alerts

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

AI-detected possible typosquat

Supply chain risk

AI has identified this package as a potential typosquat of a more popular package. This suggests that the package may be intentionally mimicking another package's name, description, or other metadata.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

No contributors or author data

Maintenance

Package does not specify a list of contributors or an author in package.json.

Found 1 instance in 1 package

No tests

Quality

Package does not have any tests. This is a strong signal of a poorly maintained or low quality package.

Found 1 instance in 1 package

Improved metrics

Dev dependency count

0

-100%

Worsened metrics

Total package byte prevSize

667

-95.44%

Number of package files

2

-88.89%

Lines of code

0

-100%

Number of low maintenance alerts

2

100%

Number of low quality alerts

1

Infinity%

Number of lines in readme file

6

-82.35%

Number of medium supply chain risk alerts

4

Infinity%

No dependency changes