npm-scripts-versioning - npm Package Compare versions

Comparing version 1.0.0-beta.3 to 1.0.0-beta.4

lib/push-changed-version-ref-files.js

@@ -26,5 +26,4 @@ #!/usr/bin/env node
 
-const fs      = require('fs');
-const path    = require('path');
-const process = require('process');
+const fs   = require('fs');
+const path = require('path');
 
@@ -35,3 +34,3 @@ const { files, version } = require(path.join(process.cwd(), 'package.json'));
 
-const filePaths = pkg.files.filter((filePath) => (filePath.startsWith("!") === false));
+const filePaths = files.filter((filePath) => (filePath.startsWith("!") === false));
 
@@ -38,0 +37,0 @@ filePaths.push('package.json');

lib/tag-version.js

@@ -26,5 +26,3 @@ #!/usr/bin/env node
 
-const path    = require('path');
-const process = require('process');
-
+const path        = require('path');
 const { version } = require(path.join(process.cwd(), 'package.json'));
@@ -31,0 +29,0 @@

lib/update-version-comment-refs.js

@@ -28,3 +28,2 @@ #!/usr/bin/env node
 const path               = require('path');
-const process            = require('process');
 
@@ -37,4 +36,5 @@ const { name, files, version } = require(path.join(process.cwd(), 'package.json'));
 
+// eslint-disable-next-line max-len
 // CREDIT: `semver-regex` NPM package (https://github.com/sindresorhus/semver-regex/blob/master/index.js)
-const semverRegex = '\\bv?(?:0|[1-9]\\d*)\\\.(?:0|[1-9]\\d*)\\.(?:0|[1-9]\\d*)(?:-[\\da-z\\-]+(?:\\.[a-z\\d\\-]+)*)?(?:\\+[a-z\\d\\-]+(?:\\.[a-z\\d\\-]+)*)?\\b';
+const semverRegex = '\\bv?(?:0|[1-9]\\d*)\\.(?:0|[1-9]\\d*)\\.(?:0|[1-9]\\d*)(?:-[\\da-z\\-]+(?:\\.[a-z\\d\\-]+)*)?(?:\\+[a-z\\d\\-]+(?:\\.[a-z\\d\\-]+)*)?\\b';
 
@@ -41,0 +41,0 @@

package.json

 {
   "name": "npm-scripts-versioning",
-  "version": "1.0.0-beta.3",
+  "version": "1.0.0-beta.4",
   "description": "",
@@ -46,2 +46,4 @@ "authors": [
     "bump:patch": "npm --no-git-tag-version version patch",
+    "postversion": "./lib/update-version-comment-refs.js && ./lib/push-changed-version-files.js",
+    "prepublishOnly": "npm run lint && git push && npx ./lib/tag-version.js",
     "postpublish": "npm run bump"
@@ -55,4 +57,4 @@ },
     "@bsara/eslint-config": "^2.1.5",
-    "eslint": "^3.19.0"
+    "eslint": "^4.3.0"
   }
 }

New alerts

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

9091

0.93%

Worsened metrics

Lines of code

116

-1.69%

No dependency changes