New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details
Socket
Book a DemoSign in
Socket
Book a DemoSign in

obuild

Package Overview
Dependencies
Maintainers
1
Versions
50
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

obuild - npm Package Compare versions

Comparing version
0.4.26
 to
0.4.27
+11
-6
dist/_chunks/build.mjs
import { builtinModules } from "node:module";
import { fileURLToPath, pathToFileURL } from "node:url";
import { basename, dirname, extname, isAbsolute, join, relative, resolve } from "pathe";
import { mkdir, readFile, rm, symlink, writeFile } from "node:fs/promises";
import { appendFile, mkdir, readFile, rm, symlink, writeFile } from "node:fs/promises";
import { consola } from "consola";

@@ -12,3 +12,3 @@ import { colors } from "consola/utils";

import prettyBytes from "pretty-bytes";
import { promises, readdirSync, statSync } from "node:fs";
import { existsSync, promises, readdirSync, statSync } from "node:fs";
import { gzipSync } from "node:zlib";

@@ -150,9 +150,14 @@ import license from "rollup-plugin-license";

if (!dependencyLicenseTexts) return;
const licenseText = `# Licenses of Bundled Dependencies
if (existsSync(opts.output)) {
console.log("Appending third-party licenses to", opts.output);
await appendFile(opts.output, "\n\n" + dependencyLicenseTexts);
} else {
const licenseText = `# Licenses of Bundled Dependencies
The published artifact additionally contains code with the following licenses:
${licenses.join(", ")}\n\n# Bundled Dependencies\n\n` + dependencyLicenseTexts;
console.log("Writing third-party licenses to", opts.output);
await mkdir(dirname$1(opts.output), { recursive: true });
await writeFile(opts.output, licenseText);
console.log("Writing third-party licenses to", opts.output);
await mkdir(dirname$1(opts.output), { recursive: true });
await writeFile(opts.output, licenseText);
}
} });

@@ -159,0 +164,0 @@ for (const hook of ["renderChunk", "generateBundle"]) {

+17
-17
package.json
{
"name": "obuild",
"version": "0.4.26",
"version": "0.4.27",
"description": "Zero-config ESM/TS package builder",
"license": "MIT",
"repository": "unjs/obuild",
"license": "MIT",
"sideEffects": false,
"type": "module",
"exports": {
".": "./dist/index.mjs",
"./config": "./dist/config.mjs"
},
"types": "./dist/index.d.mts",
"bin": {

@@ -20,4 +13,8 @@ "obuild": "./dist/cli.mjs"

],
"resolutions": {
"obuild": "link:."
"type": "module",
"sideEffects": false,
"types": "./dist/index.d.mts",
"exports": {
".": "./dist/index.mjs",
"./config": "./dist/config.mjs"
},

@@ -27,4 +24,4 @@ "scripts": {

"dev": "pnpm vitest",
"lint": "eslint . && prettier -c src test",
"lint:fix": "automd && eslint . --fix && prettier -w src test",
"lint": "oxlint . && oxfmt --check src test",
"lint:fix": "automd && oxlint . --fix && oxfmt src test",
"obuild": "node ./src/cli.ts",

@@ -43,3 +40,3 @@ "release": "pnpm test && pnpm build && changelogen --release && npm publish && git push --follow-tags",

"pretty-bytes": "^7.1.0",
"rolldown": "^1.0.0-rc.3",
"rolldown": "1.0.0-rc.3",
"rolldown-plugin-dts": "^0.22.1",

@@ -51,13 +48,16 @@ "rollup-plugin-license": "^3.6.0",

"@types/node": "^25.2.1",
"@typescript/native-preview": "^7.0.0-dev.20260205.1",
"@typescript/native-preview": "^7.0.0-dev.20260206.1",
"@vitest/coverage-v8": "^4.0.18",
"automd": "^0.4.3",
"changelogen": "^0.6.2",
"eslint": "^9.39.2",
"eslint-config-unjs": "^0.6.2",
"prettier": "^3.8.1",
"oxfmt": "^0.28.0",
"oxlint": "^1.43.0",
"typescript": "^5.9.3",
"vitest": "^4.0.18"
},
"resolutions": {
"obuild": "link:."
},
"packageManager": "pnpm@10.28.2"
}