fabric8-analytics-lsp-server - npm Package Compare versions

Comparing version 0.4.20 to 0.4.21

package.json

 {
   "name": "fabric8-analytics-lsp-server",
   "description": "LSP Server for Dependency Analytics",
-  "version": "0.4.20",
+  "version": "0.4.21",
   "author": "Pavel Odvody",
@@ -21,5 +21,2 @@ "contributors": [
   "license": "Apache-2.0",
-  "engines": {
-    "node": "*"
-  },
   "keywords": [
@@ -33,4 +30,9 @@ "fabric8-analytics",
   },
+  "main": "dist/server.js",
+  "bin": "dist/server.js",
+  "files": [
+    "dist"
+  ],
   "dependencies": {
-    "@xml-tools/ast": "5.0.0",
+    "@xml-tools/ast": "^5.0.3",
     "@xml-tools/parser": "1.0.9",
@@ -55,2 +57,3 @@ "compare-versions": "3.6.0",
     "nyc": "^14.1.1",
+    "pkg": "^4.4.9",
     "semantic-release": "^17.1.0",
@@ -61,5 +64,5 @@ "ts-node": "^8.3.0",
   "scripts": {
-    "build": "tsc -p . && cp package.json LICENSE README.md output",
+    "build": "tsc -p .",
     "test": "nyc mocha",
-    "semantic-release": "semantic-release --debug"
+    "prepare": "npm run build"
   },
@@ -83,32 +86,3 @@ "nyc": {
     "instrument": true
-  },
-  "release": {
-    "plugins": [
-      "@semantic-release/commit-analyzer",
-      "@semantic-release/release-notes-generator",
-      [
-        "@semantic-release/exec",
-        {
-          "verifyConditionsCmd": "npm run build && cp package-lock.json output",
-          "publishCmd": "cd output && npm i --only=prod && echo ${nextRelease.version}>VERSION && tar cvjf ../ca-lsp-server.tar ."
-        }
-      ],
-      [
-        "@semantic-release/github",
-        {
-          "assets": [
-            {
-              "path": "ca-lsp-server.tar"
-            }
-          ]
-        }
-      ],
-      [
-        "@semantic-release/npm",
-        {
-          "pkgRoot": "output"
-        }
-      ]
-    ]
   }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Worsened metrics

Total package byte prevSize

111221

decreased by-0.62%

Dev dependency count

14

increased by7.69%

Number of package files

27

decreased by-3.57%

Number of medium supply chain risk alerts

3

increased by200%

Dependency changes

• + Added@xml-tools/ast@5.0.5(transitive)

• + Added@xml-tools/parser@1.0.11(transitive)

• + Addedchevrotain@7.1.1(transitive)

• - Removed@xml-tools/ast@5.0.0(transitive)

• - Removedlodash@4.17.15(transitive)

• Updated@xml-tools/ast@^5.0.3