gemini-optipng - npm Package Compare versions

Comparing version 1.1.0 to 1.2.0

lib/optimizer.js

@@ -7,4 +7,5 @@ 'use strict';
 const optipng = require('optipng-bin');
-const fs = require('q-io/fs');
-const q = require('q');
+const fs = require('fs-extra');
+const Promise = require('bluebird');
+const execFile = Promise.promisify(childProcess.execFile);
 
@@ -31,7 +32,7 @@ module.exports = class Optimizer {
     _getImageSize() {
-        return fs.stat(this._imagePath).get('size');
+        return fs.stat(this._imagePath).then((stat) => stat.size);
     }
 
     _compressImage() {
-        return q.nfcall(childProcess.execFile, optipng, ['-o', this._level, this._imagePath]);
+        return execFile(optipng, ['-o', this._level, this._imagePath]);
     }
@@ -38,0 +39,0 @@

package.json

 {
   "name": "gemini-optipng",
-  "version": "1.1.0",
+  "version": "1.2.0",
   "description": "Plugin for gemini which optimize reference images",
@@ -28,8 +28,8 @@ "repository": {
   "dependencies": {
+    "bluebird": "^3.5.1",
     "chalk": "^1.1.3",
     "debug": "^2.2.0",
+    "fs-extra": "^5.0.0",
     "lodash": "^4.15.0",
-    "optipng-bin": "^3.1.2",
-    "q": "^1.4.1",
-    "q-io": "^2.0.6"
+    "optipng-bin": "^3.1.2"
   },
@@ -43,4 +43,4 @@ "devDependencies": {
     "proxyquire": "^1.7.10",
-    "sinon": "^1.17.5"
+    "sinon": "^4.2.2"
   }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

7651

increased by0.98%

Lines of code

65

increased by1.56%

Worsened metrics

Number of low supply chain risk alerts

1

increased byInfinity%

Dependency changes

• + Addedbluebird@^3.5.1

• + Addedfs-extra@^5.0.0

• + Addedbluebird@3.7.2(transitive)

• + Addedfs-extra@5.0.0(transitive)

• + Addedjsonfile@4.0.0(transitive)

• + Addeduniversalify@0.1.2(transitive)

• - Removedq@^1.4.1

• - Removedq-io@^2.0.6

• - Removedasap@2.0.6(transitive)

• - Removedcollections@2.0.3(transitive)

• - Removedmime@1.6.0(transitive)

• - Removedmimeparse@0.1.4(transitive)

• - Removedmini-map@1.0.0(transitive)

• - Removedpop-arrayify@1.0.0(transitive)

• - Removedpop-clear@1.0.0(transitive)

• - Removedpop-clone@1.0.1(transitive)

• - Removedpop-compare@1.0.0(transitive)

• - Removedpop-equals@1.0.0(transitive)

• - Removedpop-has@1.0.0(transitive)

• - Removedpop-hash@1.0.1(transitive)

• - Removedpop-iterate@1.0.1(transitive)

• - Removedpop-observe@2.0.2(transitive)

• - Removedpop-swap@1.0.0(transitive)

• - Removedpop-zip@1.0.0(transitive)

• - Removedpunycode@1.0.0(transitive)

• - Removedq@1.5.12.0.3(transitive)

• - Removedq-io@2.0.6(transitive)

• - Removedqs@0.6.6(transitive)

• - Removedquerystring@0.1.0(transitive)

• - Removedregexp-escape@0.0.1(transitive)

• - Removedurl@0.7.9(transitive)

• - Removedurl2@2.0.0(transitive)

• - Removedweak-map@1.0.8(transitive)