jsonwebtoken - npm Package Compare versions

Comparing version 8.0.0 to 8.0.1

CHANGELOG.md

@@ -7,2 +7,6 @@ # Change Log
 
+## 8.0.1 - 2017-09-12
+
+ - Remove `lodash.isarray` dependency (#394) ([7508e8957cb1c778f72fa9a363a7b135b3c9c36d](https://github.com/auth0/node-jsonwebtoken/commit/7508e8957cb1c778f72fa9a363a7b135b3c9c36d))
+
 ## 8.0.0 - 2017-09-06
@@ -9,0 +13,0 @@

package.json

 {
   "name": "jsonwebtoken",
-  "version": "8.0.0",
+  "version": "8.0.1",
   "description": "JSON Web Token implementation (symmetric and asymmetric)",
@@ -24,3 +24,2 @@ "main": "index.js",
     "lodash.includes": "^4.3.0",
-    "lodash.isarray": "^4.0.0",
     "lodash.isboolean": "^3.0.3",
@@ -27,0 +26,0 @@ "lodash.isinteger": "^4.0.4",

sign.js

@@ -5,3 +5,2 @@ var timespan = require('./lib/timespan');
 var includes = require('lodash.includes');
-var isArray = require('lodash.isarray');
 var isBoolean = require('lodash.isboolean');
@@ -17,3 +16,3 @@ var isInteger = require('lodash.isinteger');
   notBefore: { isValid: function(value) { return isInteger(value) || isString(value); }, message: '"notBefore" should be a number of seconds or string representing a timespan' },
-  audience: { isValid: function(value) { return isString(value) || isArray(value); }, message: '"audience" must be a string or array' },
+  audience: { isValid: function(value) { return isString(value) || Array.isArray(value); }, message: '"audience" must be a string or array' },
   algorithm: { isValid: includes.bind(null, ['RS256', 'RS384', 'RS512', 'ES256', 'ES384', 'ES512', 'HS256', 'HS384', 'HS512', 'none']), message: '"algorithm" must be a valid string enum value' },
@@ -20,0 +19,0 @@ header: { isValid: isPlainObject, message: '"header" must be an object' },

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

54788

increased by0.25%

Dependency count

10

decreased by-9.09%

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Lines of code

371

decreased by-0.27%

Dependency changes

• - Removedlodash.isarray@^4.0.0

• - Removedlodash.isarray@4.0.0(transitive)