getstream - npm Package Compare versions

Comparing version 7.1.2 to 7.1.3

CHANGELOG.md

@@ -8,4 +8,8 @@ # CHANGELOG
 
-## [7.1.2](https://github.com/GetStream/stream-js/releases/tag/v7.1.1) - 2021-01-20
+## [7.1.3](https://github.com/GetStream/stream-js/releases/tag/v7.1.3) - 2021-01-21
 
+- Add a note into readme about browser detection and option to skip [#414](https://github.com/GetStream/stream-js/pull/414)
+
+## [7.1.2](https://github.com/GetStream/stream-js/releases/tag/v7.1.2) - 2021-01-20
+
 - Improve docs [#413](https://github.com/GetStream/stream-js/pull/413)
@@ -12,0 +16,0 @@

package.json

@@ -14,3 +14,3 @@ {
   "license": "BSD-3-Clause",
-  "version": "7.1.2",
+  "version": "7.1.3",
   "scripts": {
@@ -17,0 +17,0 @@ "transpile": "babel src --out-dir lib --extensions '.ts'",

README.md

@@ -58,3 +58,3 @@ # Stream-JS
 
-```javascript
+```js
 import { connect } from 'getstream';
@@ -76,3 +76,3 @@ // or if you are on commonjs
 
-```javascript
+```js
 import { connect } from 'getstream';
@@ -90,5 +90,11 @@ // or if you are on commonjs
 
+> :warning: Client checks if it's running in a browser environment with a secret and throws an error for a possible security issue of exposing your secret. If you are running backend code in Google Cloud or you know what you're doing, you can specify `browser: false` in `options` to skip this check.
+
+```js
+const client = connect('YOUR_API_KEY', 'API_KEY_SECRET', 'APP_ID', { browser: false });
+```
+
 #### Client API init
 
-```javascript
+```js
 import { connect } from 'getstream';
@@ -103,3 +109,3 @@ // or if you are on commonjs
 
-```javascript
+```js
 // Instantiate a feed object server side
@@ -267,3 +273,3 @@ user1 = client.feed('user', '1');
 
-```typescript
+```ts
 import { connect, EnrichedActivity, NotificationActivity } from getstream;
@@ -336,3 +342,3 @@
 
-```javascript
+```js
 const { connect } = require('getstream');
@@ -375,4 +381,4 @@
 
-Copyright (c) 2015-2020 Stream.io Inc, and individual contributors. All rights reserved.
+Copyright (c) 2015-2021 Stream.io Inc, and individual contributors. All rights reserved.
 
 See the file "LICENSE" for information on the history of this software, terms & conditions for usage, and a DISCLAIMER OF ALL WARRANTIES.

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Native code

Supply chain risk

Contains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.

Found 2 instances in 1 package

Improved metrics

Number of lines in readme file

378

increased by1.61%

Number of medium supply chain risk alerts

2

decreased by-50%

Worsened metrics

Total package byte prevSize

791710

decreased by-1.46%

Number of package files

67

decreased by-2.9%

No dependency changes