cssnano-preset-simple
Advanced tools
cssnano-preset-simple - npm Package Compare versions
Comparing version 1.0.0 to 1.0.1
| { | ||
| "name": "cssnano-preset-simple", | ||
| "version": "1.0.0", | ||
| "version": "1.0.1", | ||
| "description": "A simple cssnano preset", | ||
@@ -14,10 +14,15 @@ "main": "dist/index.js", | ||
| "scripts": { | ||
| "prebuild": "rimraf dist/", | ||
| "prebuild": "rimraf dist/ && node patch.js", | ||
| "build": "ncc build src/index.js -o dist --minify --external postcss", | ||
| "prepublishOnly": "yarn build", | ||
| "semantic-release": "semantic-release" | ||
| "test": "jest", | ||
| "prepublishOnly": "yarn build && yarn test", | ||
| "semantic-release": "semantic-release", | ||
| "commit": "git-cz" | ||
| }, | ||
| "devDependencies": { | ||
| "@zeit/ncc": "^0.20.5", | ||
| "browserslist-config-google": "^1.5.0", | ||
| "cssnano-preset-default": "^4.0.7", | ||
| "cz-conventional-changelog": "3.0.2", | ||
| "jest": "^24.9.0", | ||
| "rimraf": "^3.0.0", | ||
@@ -31,3 +36,8 @@ "semantic-release": "^15.13.24" | ||
| "postcss-svgo": "file:./postcss-plugin-stub/" | ||
| }, | ||
| "config": { | ||
| "commitizen": { | ||
| "path": "./node_modules/cz-conventional-changelog" | ||
| } | ||
| } | ||
| } |
Sorry, the diff of this file is too big to display
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
No README
QualityPackage does not have a README. This may indicate a failed publish or a low quality package.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by1.5%
881246
- Number of package files
- increased by20%
6
- Number of medium quality alerts
- decreased by-100%
0
- Number of lines in readme file
- increased byInfinity%
4
- Number of low supply chain risk alerts
- decreased by-5.56%
17
Worsened metrics
- Dev dependency count
- increased by75%
7
- Number of medium supply chain risk alerts
- increased by33.33%
4