espower-source - npm Package Compare versions

Comparing version 0.7.1 to 0.7.3

index.js

@@ -16,3 +16,3 @@ /**
 
-function espowerSourceToSource(jsCode, filepath, options) {
+function espowerSource(jsCode, filepath, options) {
     'use strict';
@@ -38,2 +38,2 @@
 
-module.exports = espowerSourceToSource;
+module.exports = espowerSource;

package.json

 {
   "name": "espower-source",
-  "version": "0.7.1",
+  "version": "0.7.3",
   "description": "Power Assert instrumentor from source to source, with source-map",
@@ -31,4 +31,5 @@ "keywords": [
   "scripts": {
-    "jshint": "./node_modules/jshint/bin/jshint index.js",
-    "test": "./node_modules/mocha/bin/mocha"
+    "bundle": "./node_modules/.bin/browserify index.js --standalone espowerSource > ./build/espower-source.js",
+    "jshint": "./node_modules/.bin/jshint index.js",
+    "test": "./node_modules/.bin/mocha"
   },
@@ -43,4 +44,6 @@ "dependencies": {
   "devDependencies": {
-    "jshint": "~2.5.0",
-    "mocha": "~1.19.0",
+    "browserify": "~4.1.6",
+    "jshint": "~2.5.1",
+    "mocha": "~1.20.0",
+    "semver": "~2.3.0",
     "source-map": "~0.1.33"
@@ -47,0 +50,0 @@ },

test/test.js

@@ -1,2 +0,2 @@
-var sourceToSource = require('..'),
+var espowerSource = require('..'),
     sourceMap = require('source-map'),
@@ -11,3 +11,3 @@ convert = require('convert-source-map'),
         this.input = fs.readFileSync(this.path, 'utf8'),
-        this.output = sourceToSource(this.input, this.path);
+        this.output = espowerSource(this.input, this.path);
         this.map = convert.fromSource(this.output).toObject();
@@ -69,3 +69,3 @@ this.expected = fs.readFileSync('test/expected/example.js', 'utf8');
         this.input = fs.readFileSync(this.path, 'utf8'),
-        this.output = sourceToSource(this.input, this.path, {
+        this.output = espowerSource(this.input, this.path, {
             powerAssertVariableName: 'refute',
@@ -72,0 +72,0 @@ targetMethods: {

New alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

High entropy strings

Supply chain risk

Contains high entropy strings. This could be a sign of encrypted data, leaked secrets or obfuscated code.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

477948

increased by2466.3%

Number of package files

13

increased by18.18%

Lines of code

12008

increased by4801.22%

Worsened metrics

Dev dependency count

5

increased by66.67%

Number of low supply chain risk alerts

12

increased by1100%

Number of medium supply chain risk alerts

1

increased byInfinity%

No dependency changes