gia - npm Package Compare versions

Comparing version 0.0.2 to 0.0.3

package.json

 {
   "name": "gia",
-  "version": "0.0.2",
-  "description": "",
-  "main": "index.js",
+  "version": "0.0.3",
+  "description": "Minimalistic JS framework for server rendered websites.",
+  "main": "dist/gia.js",
   "private": false,
   "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1"
+    "compile-component": "babel --presets es2015,stage-0 src/Component.js --out-file Component.js",
+    "compile-base-component": "babel --presets es2015,stage-0 src/BaseComponent.js --out-file BaseComponent.js",
+    "compile-get-component-from-element": "babel --presets es2015,stage-0 src/getComponentFromElement.js --out-file getComponentFromElement.js",
+    "compile-load-components": "babel --presets es2015,stage-0 src/loadComponents.js --out-file loadComponents.js",
+    "compile-create-instance": "babel --presets es2015,stage-0 src/createInstance.js --out-file createInstance.js",
+    "compile-remove-components": "babel --presets es2015,stage-0 src/removeComponents.js --out-file removeComponents.js",
+    "compile-destroy-instance": "babel --presets es2015,stage-0 src/destroyInstance.js --out-file destroyInstance.js",
+    "compile-utils": "babel --presets es2015,stage-0 src/utils.js --out-file utils.js",
+    "compile-eventbus": "babel --presets es2015,stage-0 src/eventbus.js --out-file eventbus.js",
+    "compile-config": "babel --presets es2015,stage-0 src/config.js --out-file config.js",
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "compile": "npm run compile-component && npm run compile-base-component && npm run compile-get-component-from-element && npm run compile-load-components && npm run compile-create-instance && npm run compile-remove-components && npm run compile-destroy-instance && npm run compile-utils && npm run compile-eventbus && npm run compile-config",
+    "build": "webpack-cli",
+    "prepublish": "npm run compile"
   },
-  "author": "",
-  "license": "ISC"
+  "author": "Georgy Marchuk",
+  "contributors": [
+    "Daniel Cirmaciu",
+    "Georgy Marchuk"
+  ],
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": ""
+  },
+  "keywords": [],
+  "dependencies": {
+    "babel-regenerator-runtime": "^6.5.0"
+  },
+  "devDependencies": {
+    "babel-cli": "^6.26.0",
+    "babel-loader": "^7.1.4",
+    "babel-plugin-transform-runtime": "^6.23.0",
+    "babel-preset-es2015": "^6.24.1",
+    "babel-preset-stage-0": "^6.24.1",
+    "uglifyjs-webpack-plugin": "^1.2.5",
+    "webpack": "^4.8.3",
+    "webpack-cli": "^2.1.3"
+  }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 2 instances in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

No contributors or author data

Maintenance

Package does not specify a list of contributors or an author in package.json.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

224730

increased by1470.77%

Number of package files

33

increased by450%

Lines of code

4037

increased byInfinity%

Number of low maintenance alerts

2

decreased by-33.33%

Number of medium quality alerts

1

decreased by-50%

Number of lines in readme file

365

increased byInfinity%

Worsened metrics

Dependency count

1

increased byInfinity%

Dev dependency count

8

increased byInfinity%

Number of low supply chain risk alerts

4

increased by300%

Number of medium supply chain risk alerts

3

increased by50%

Dependency changes

• + Addedbabel-regenerator-runtime@^6.5.0

• + Addedbabel-regenerator-runtime@6.5.0(transitive)