fixturify-project
Advanced tools
fixturify-project - npm Package Compare versions
Comparing version 4.1.2 to 5.0.0
| ## v5.0.0 (2022-04-15) | ||
| #### :boom: Breaking Change | ||
| * [#62](https://github.com/stefanpenner/node-fixturify-project/pull/62) Converts to multi-target publishing (cjs/esm) w/ declaration files. Removes support for Node 12 ([@scalvert](https://github.com/scalvert)) | ||
| #### :rocket: Enhancement | ||
| * [#64](https://github.com/stefanpenner/node-fixturify-project/pull/64) Adding write(dirJSON), mergeFiles APIs ([@scalvert](https://github.com/scalvert)) | ||
| #### Committers: 1 | ||
| - Steve Calvert ([@scalvert](https://github.com/scalvert)) | ||
| ## v4.1.2 (2022-04-12) | ||
@@ -3,0 +16,0 @@ |
| { | ||
| "name": "fixturify-project", | ||
| "version": "4.1.2", | ||
| "version": "5.0.0", | ||
| "repository": "git@github.com:stefanpenner/node-fixturify-project", | ||
| "license": "MIT", | ||
| "author": "Stefan Penner <stefan.penner@gmail.com>", | ||
| "main": "index.js", | ||
| "type": "module", | ||
| "exports": { | ||
| ".": { | ||
| "require": "./dist/index.cjs", | ||
| "import": "./dist/index.js", | ||
| "types": "./dist/index.d.ts" | ||
| } | ||
| }, | ||
| "main": "./dist/index.cjs", | ||
| "module": "./dist/index.js", | ||
| "types": "./dist/index.d.ts", | ||
| "files": [ | ||
| "index.js", | ||
| "index.d.ts" | ||
| "dist" | ||
| ], | ||
| "scripts": { | ||
| "clean": "git clean -x -f", | ||
| "build": "tsup src/index.ts --format cjs,esm --dts --clean", | ||
| "lint": "yarn prettier --check *.ts", | ||
| "prepare": "tsc", | ||
| "test": "mocha test -r source-map-support/register", | ||
| "test:inspect": "mocha inspect test -r source-map-support/register" | ||
| "prepare": "yarn build", | ||
| "prepublishOnly": "yarn build", | ||
| "test": "vitest run" | ||
| }, | ||
| "dependencies": { | ||
| "bin-links": "^3.0.0", | ||
| "deepmerge": "^4.2.2", | ||
| "fixturify": "^2.1.1", | ||
| "resolve-package-path": "^3.1.0", | ||
| "resolve-package-path": "^4.0.3", | ||
| "tmp": "^0.0.33", | ||
@@ -30,3 +40,2 @@ "type-fest": "^2.3.2", | ||
| "@types/fs-extra": "^9.0.11", | ||
| "@types/mocha": "^9.0.0", | ||
| "@types/node": "^16.9.1", | ||
@@ -36,11 +45,11 @@ "@types/tmp": "^0.0.33", | ||
| "fs-extra": "^10.0.0", | ||
| "mocha": "^9.1.1", | ||
| "prettier": "^2.3.0", | ||
| "release-it": "^14.2.1", | ||
| "release-it-lerna-changelog": "^3.1.0", | ||
| "source-map-support": "^0.5.19", | ||
| "typescript": "^4.2.4" | ||
| "release-it-lerna-changelog": "^4.0.1", | ||
| "tsup": "^5.12.5", | ||
| "typescript": "^4.2.4", | ||
| "vitest": "^0.9.3" | ||
| }, | ||
| "engines": { | ||
| "node": "12.* || >= 14.*" | ||
| "node": ">= 14.*" | ||
| }, | ||
@@ -47,0 +56,0 @@ "publishConfig": { |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Dynamic require
Supply chain riskDynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 3 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by636.22%
216567
- Dev dependency count
- decreased by-7.69%
12
- Number of package files
- increased by20%
6
- Lines of code
- increased by906.37%
6320
- Is type module
Yes
Worsened metrics
- Dependency count
- increased by16.67%
7
- Number of low supply chain risk alerts
- increased by600%
14
Dependency changes
+ Addeddeepmerge@^4.2.2
+ Addeddeepmerge@4.3.1(transitive)
+ Addedresolve-package-path@4.0.3(transitive)
- Removedfunction-bind@1.1.2(transitive)
- Removedhasown@2.0.2(transitive)
- Removedis-core-module@2.16.1(transitive)
- Removedpath-parse@1.0.7(transitive)
- Removedresolve@1.22.10(transitive)
- Removedresolve-package-path@3.1.0(transitive)
- Removedsupports-preserve-symlinks-flag@1.0.0(transitive)
Updatedresolve-package-path@^4.0.3