edge-fs - npm Package Compare versions

Comparing version 0.2.0 to 1.0.0

lib/edge-fs.js

@@ -0,3 +1,10 @@
+var path = require('path');
+
+process.env.EDGE_FS_TOOLS = path.join(__dirname, 'tools')
 exports.getCompiler = function () {
-	return process.env.EDGE_FS_NATIVE || (__dirname + '\\edge-fs.dll');
-};
+	return process.env.EDGE_FS_NATIVE || ( process.env.EDGE_USE_CORECLR ? path.join(__dirname, 'edge-fs-coreclr.dll') : path.join(__dirname, 'edge-fs.dll'));
+};
+
+// exports.getBootstrapDependencyManifest = function() {
+// 	return path.join(__dirname, 'edge-fs-coreclr.deps.json');
+// }

package.json

@@ -8,3 +8,3 @@ {
   },
-  "version": "0.2.0",
+  "version": "1.0.0",
   "description": "Edge-fs: run F# and node.js code in-process with edge.js",
@@ -24,19 +24,15 @@ "tags": [
   "engines": {
-    "node": ">= 0.6"
+    "node": ">= 16"
   },
-  "licenses": [
-    {
-      "type": "Apache",
-      "url": "http://www.apache.org/licenses/LICENSE-2.0"
-    }
-  ],
+  "license": "MIT",
   "dependencies": {},
-  "homepage": "http://tjanczuk.github.com/edge",
-  "repository": {
-    "type": "git",
-    "url": "git@github.com:7sharp9/edge-fs.git"
-  },
-  "bugs": {
-    "url": "http://github.com/7sharp9/edge-fs/issues"
-  }
+	"homepage": "https://github.com/agracio/edge-fs",
+	"repository": {
+		"type": "git",
+		"url": "git@github.com:agracio/edge-fs.git"
+	},
+	"bugs": {
+		"url": "http://github.com/agracio/edge-fs/issues"
+	}
+
 }

README.md

@@ -1,30 +0,44 @@
-edge-fs
-=======
+## edge-fs
 
-This is a F# compiler for edge.js.
+### F# compiler for [Edge.js](https://github.com/agracio/edge-js). 
 
-See [edge.js overview](http://tjanczuk.github.com/edge) and [edge.js on GitHub](https://github.com/tjanczuk/egde) for more information. 
+### This library is based on https://github.com/7sharp9/edge-fs all credit for original work goes to Dave Thomas. 
+------
 
-###Quick install guide
+### Overview
 
-It should be pretty easy to get going on Windows: 
+Install edge and edge-fs modules:
 
-1. Make sure you have F# installed with Visual Studio 2012  
-2. Navigate to a test project  
-3. Install edge.js with `npm install edgejs -g` *(Note you dont have to do a global package install, just omit the -g)* 
-4. Install edge-fs into your test project with `npm install edge-fs -g`  
-5. create a test node.js file along the lines of:  
+``` 
+npm install edge-js
+npm install edge-fs
+```
 
-   ```javascript
-   var edge = require('edge');
+server.js:
 
-   var helloWorld = edge.func('fs', 'fun input -> async{return ".NET welcomes " + input.ToString()}');
+```javascript
+var edge = require('edge-js');
 
-   helloWorld('JavaScript', function (error, result) {
-       if (error) throw error;
-       console.log(result);
-   });
+var helloFs = edge.func('fs', function () {/*
+    fun input -> async { 
+        return "F# welcomes " + input.ToString()
+    }
+*/});
+
+helloFs('Node.js', function (error, result) {
+    if (error) throw error;
+    console.log(result);
+});
 ```
-8. Test with ```node testfile.js```
 
-Ill be writing more documentation over time.   
+Run and enjoy:
+
+```
+node server.js
+F# welcomes Node.js
+```
+
+#### Supported .NET frameworks
+
+* .NET 4.6.2
+* .NET Standard 2.0

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Native code

Supply chain risk

Contains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.

Found 13 instances in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Trivial Package

Supply chain risk

Packages less than 10 lines of code are easily copied into your own project and may not warrant the additional supply chain risk of an external dependency.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 3 instances in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Deprecated

Maintenance

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Found 1 instance in 1 package

Native code

Supply chain risk

Contains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.

Found 4 instances in 1 package

Trivial Package

Supply chain risk

Packages less than 10 lines of code are easily copied into your own project and may not warrant the additional supply chain risk of an external dependency.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

No website

Quality

Package does not have a website.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

40239830

increased by4127.99%

Lines of code

8

increased by300%

Number of medium maintenance alerts

0

decreased by-100%

Number of low quality alerts

0

decreased by-100%

Number of lines in readme file

45

increased by45.16%

Worsened metrics

Number of package files

17

decreased by-5.56%

Number of low supply chain risk alerts

3

increased byInfinity%

Number of medium supply chain risk alerts

15

increased by200%

No dependency changes