graphql-sse - npm Package Compare versions

Comparing version 0.0.0 to 1.0.0

package.json

 {
   "name": "graphql-sse",
-  "version": "0.0.0",
-  "license": "ISC"
+  "version": "1.0.0",
+  "description": "Zero-dependency, HTTP/1 safe, simple, GraphQL over Server-Sent Events Protocol server and client",
+  "keywords": [
+    "graphql",
+    "client",
+    "relay",
+    "express",
+    "apollo",
+    "server",
+    "sse",
+    "transport",
+    "server-sent-events",
+    "observables",
+    "subscriptions",
+    "fastify"
+  ],
+  "author": "Denis Badurina <badurinadenis@gmail.com>",
+  "license": "MIT",
+  "homepage": "https://github.com/enisdenjo/graphql-sse#readme",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/enisdenjo/graphql-sse.git"
+  },
+  "engines": {
+    "node": ">=12"
+  },
+  "main": "lib/index.js",
+  "module": "lib/index.mjs",
+  "browser": "umd/graphql-sse.js",
+  "exports": {
+    ".": {
+      "require": "./lib/index.js",
+      "import": "./lib/index.mjs",
+      "browser": "./umd/graphql-sse.js"
+    },
+    "./package.json": "./package.json"
+  },
+  "types": "lib/index.d.ts",
+  "files": [
+    "lib",
+    "umd",
+    "README.md",
+    "LICENSE.md",
+    "PROTOCOL.md"
+  ],
+  "sideEffects": [
+    "umd/*"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "gendocs": "typedoc --options typedoc.js src/",
+    "lint": "eslint 'src'",
+    "type-check": "tsc --noEmit",
+    "test": "jest",
+    "build:esm": "tsc -b tsconfig.esm.json && node scripts/esm-post-process.js",
+    "build:cjs": "tsc -b tsconfig.cjs.json",
+    "build:umd": "rollup -c && gzip umd/graphql-sse.min.js -c > umd/graphql-sse.min.js.gz",
+    "build": "yarn build:esm && yarn build:cjs && yarn build:umd",
+    "release": "semantic-release"
+  },
+  "peerDependencies": {
+    "graphql": ">=0.11 <=15"
+  },
+  "devDependencies": {
+    "@babel/core": "^7.15.0",
+    "@babel/plugin-proposal-class-properties": "^7.14.5",
+    "@babel/plugin-proposal-nullish-coalescing-operator": "^7.14.5",
+    "@babel/plugin-proposal-object-rest-spread": "^7.14.7",
+    "@babel/plugin-proposal-optional-chaining": "^7.14.5",
+    "@babel/preset-env": "^7.15.0",
+    "@babel/preset-typescript": "^7.15.0",
+    "@rollup/plugin-typescript": "^8.2.5",
+    "@semantic-release/changelog": "^5.0.1",
+    "@semantic-release/git": "^9.0.0",
+    "@types/eventsource": "^1.1.6",
+    "@types/jest": "^26.0.24",
+    "@types/node-fetch": "^2.5.12",
+    "@typescript-eslint/eslint-plugin": "^4.29.2",
+    "@typescript-eslint/parser": "^4.29.2",
+    "babel-jest": "^27.0.6",
+    "eslint": "^7.32.0",
+    "eslint-config-prettier": "^8.3.0",
+    "eslint-plugin-prettier": "^3.4.1",
+    "eventsource": "^1.1.0",
+    "graphql": "^15.5.1",
+    "jest": "^27.0.6",
+    "node-fetch": "^2.6.1",
+    "prettier": "^2.3.2",
+    "replacestream": "^4.0.3",
+    "rollup": "^2.56.2",
+    "rollup-plugin-terser": "^7.0.2",
+    "semantic-release": "^17.4.5",
+    "typedoc": "^0.21.6",
+    "typedoc-plugin-markdown": "^3.10.4",
+    "typescript": "^4.3.5"
+  }
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Native code

Supply chain risk

Contains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Deprecated

Maintenance

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

Native code

Supply chain risk

Contains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

No contributors or author data

Maintenance

Package does not specify a list of contributors or an author in package.json.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

No website

Quality

Package does not have a website.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

202935

increased by86996.57%

Number of package files

25

increased by1150%

Lines of code

3587

increased byInfinity%

Number of low maintenance alerts

1

decreased by-50%

Number of medium maintenance alerts

0

decreased by-100%

Number of low quality alerts

0

decreased by-100%

Number of medium quality alerts

0

decreased by-100%

Number of lines in readme file

790

increased byInfinity%

Number of low supply chain risk alerts

0

decreased by-100%

Worsened metrics

Dependency count

1

increased byInfinity%

Dev dependency count

31

increased byInfinity%

Number of medium supply chain risk alerts

6

increased by200%

No dependency changes