fingerprinting - npm Package Compare versions

Comparing version 1.0.0 to 1.0.1

index.js

@@ -52,5 +52,6 @@ 'use strict';
   hash.update(options.content);
+  result.id = hash.digest('hex');
 
   print = print.replace('{suffix}', env[options.env] || 'dev');
-  print = print.replace('{hash}', hash.digest('hex'));
+  print = print.replace('{hash}', result.id);
 
@@ -57,0 +58,0 @@ //

package.json

 {
   "name": "fingerprinting",
-  "version": "1.0.0",
+  "version": "1.0.1",
   "description": "Produce a unique string for any given resource, commonly used in cache busting practices.",
@@ -5,0 +5,0 @@ "main": "index.js",

test.js

@@ -21,4 +21,5 @@ describe('fingerprinting', function () {
     assume(print).is.a('object');
-    assume(print).has.length(1);
+    assume(print).has.length(2);
     assume(print.file).equals(md5 +'.dev.js');
+    assume(print.id).equals(md5);
   });
@@ -33,5 +34,6 @@
     assume(print).is.a('object');
-    assume(print).has.length(2);
+    assume(print).has.length(3);
     assume(print.file).equals(md5 +'.dev.js');
     assume(print.map).equals(md5 +'.dev.map');
+    assume(print.id).equals(md5);
   });
@@ -43,4 +45,5 @@
     assume(print).is.a('object');
-    assume(print).has.length(1);
+    assume(print).has.length(2);
     assume(print.file).equals(md5 +'.dev.js');
+    assume(print.id).equals(md5);
   });
@@ -56,4 +59,5 @@
     assume(print).is.a('object');
-    assume(print).has.length(1);
+    assume(print).has.length(2);
     assume(print.file).equals(md5 +'.min.js');
+    assume(print.id).equals(md5);
 
@@ -70,4 +74,5 @@ process.env.NODE_ENV = '';
     assume(print).is.a('object');
-    assume(print).has.length(1);
+    assume(print).has.length(2);
     assume(print.file).equals(md5 +'.test.js');
+    assume(print.id).equals(md5);
   });
@@ -82,5 +87,6 @@
     assume(print).is.a('object');
-    assume(print).has.length(1);
+    assume(print.id).equals(md5);
     assume(print.file).equals('foo-'+ md5 +'-generated.js');
+    assume(print).has.length(2);
   });
 });

Fixed alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

8608

increased by2.73%

Lines of code

127

increased by5.83%

Number of low supply chain risk alerts

5

decreased by-28.57%

No dependency changes