luvi - npm Package Compare versions

Comparing version 5.1.0 to 5.1.1

lib/luvi.js

 const http = require('http')
-const path = require('path')
 
 const connect = require('connect')
 const serveStatic = require('serve-static')
-const markdown = require('connect-markdown')
 
@@ -12,2 +10,3 @@ const clrs = require('zeelib/lib/colorize').default
 
+const markdown = require('./markdown')
 const notFound = require('./not-found')
@@ -41,8 +40,3 @@
   if (config.markdown) {
-    app.use(
-      markdown({
-        root: config.root,
-        layout: path.resolve(__dirname, 'markdown-layout.html'),
-      })
-    )
+    app.use(markdown(config.root))
   }
@@ -49,0 +43,0 @@

package.json

 {
   "name": "luvi",
   "description": "Dev server with simple config and API.",
-  "version": "5.1.0",
+  "version": "5.1.1",
   "author": "Zac Anger <zac@zacanger.com> (http://zacanger.com)",
@@ -41,3 +41,3 @@ "funding": {
     "connect": "3.7.0",
-    "connect-markdown": "0.0.3",
+    "marked": "2.0.1",
     "minimist": "1.2.5",
@@ -44,0 +44,0 @@ "serve-static": "1.14.1",

New alerts

Deprecated

Maintenance

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

26317

increased by5.23%

Number of package files

21

increased by5%

Lines of code

215

increased by22.16%

Worsened metrics

Number of medium maintenance alerts

1

increased byInfinity%

Number of low supply chain risk alerts

3

increased by50%

Dependency changes

• + Addedmarked@2.0.1

• + Addedmarked@2.0.1(transitive)

• - Removedconnect-markdown@0.0.3

• - Removedconnect-markdown@0.0.3(transitive)

• - Removedeventproxy@1.0.0(transitive)

• - Removedmarked@0.2.9(transitive)