fetch-blob - npm Package Compare versions

Comparing version 2.0.1 to 2.1.0

CHANGELOG.md

 Changelog
 =========
 
+## v2.1.0
+- Fix: .slice has an implementation bug (#54).
+- Added blob backed up by filesystem (#55)
+
 ## v2.0.1
@@ -5,0 +9,0 @@

index.js

@@ -141,3 +141,3 @@ const {Readable} = require('stream');
 				blobParts.push(chunk);
-				added += size;
+				added += ArrayBuffer.isView(chunk) ? chunk.byteLength : chunk.size;
 				relativeStart = 0; // All next sequental parts should start at 0
@@ -144,0 +144,0 @@

package.json

 {
     "name": "fetch-blob",
-    "version": "2.0.1",
+    "version": "2.1.0",
     "description": "A Blob implementation in Node.js, originally from node-fetch.",
     "main": "index.js",
     "files": [
+        "from.js",
         "index.js",
@@ -51,3 +52,5 @@ "index.d.ts"
     },
-    "dependencies": {}
+    "peerDependencies": {
+        "domexception": "^2.0.1"
+    }
 }

README.md

@@ -30,2 +30,20 @@ # fetch-blob
 
+### Blob part backed up by filesystem
+To use, install [domexception](https://github.com/jsdom/domexception).
+
+```sh
+npm install fetch-blob domexception
+```
+
+```js
+const blobFrom = require('fetch-blob/from.js');
+const blob1 = blobFrom('./2-GiB-file.bin');
+const blob2 = blobFrom('./2-GiB-file.bin');
+
+// Not a 4 GiB memory snapshot, just holds 3 references
+// points to where data is located on the disk
+const blob = new Blob([blob1, blob2]);
+console.log(blob.size) // 4 GiB
+```
+
 See the [MDN documentation](https://developer.mozilla.org/en-US/docs/Web/API/Blob) and [tests](https://github.com/node-fetch/fetch-blob/blob/master/test.js) for more details.
@@ -32,0 +50,0 @@

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

13312

increased by17.16%

Number of package files

7

increased by16.67%

Lines of code

262

increased by23%

Number of lines in readme file

58

increased by45%

Worsened metrics

Dependency count

1

increased byInfinity%

Number of low supply chain risk alerts

2

increased by100%

Number of medium supply chain risk alerts

1

increased byInfinity%

No dependency changes