postcss-prefixwrap - npm Package Compare versions

Comparing version 1.47.0 to 1.48.0

CHANGELOG.md

@@ -7,2 +7,8 @@ # [PostCSS Prefix Wrap](./README.md) // Changelog
 
+## [1.48.0](https://github.com/dbtedman/postcss-prefixwrap/releases/tag/1.48.0)
+
+### 🔧 Maintenance
+
+-   Apply dependency updates.
+
 ## [1.47.0](https://github.com/dbtedman/postcss-prefixwrap/releases/tag/1.47.0)
@@ -9,0 +15,0 @@

LICENSE.md

 MIT License
 
-Copyright © 2023 [Daniel Tedman](https://tedman.dev)
+Copyright © 2024 [Daniel Tedman](https://tedman.dev)
 
@@ -5,0 +5,0 @@ Permission is hereby granted, free of charge, to any person obtaining a copy

package.json

 {
   "name": "postcss-prefixwrap",
-  "version": "1.47.0",
+  "version": "1.48.0",
   "description": "A PostCSS plugin that is used to wrap css styles with a css selector to constrain their affect on parent elements in a page.",
@@ -30,9 +30,9 @@ "keywords": [
   "devDependencies": {
-    "@babel/core": "7.24.4",
+    "@babel/core": "7.24.5",
     "@jest/globals": "29.7.0",
     "@tsconfig/node18": "18.2.4",
     "@types/jest": "29.5.12",
-    "@types/node": "20.12.5",
-    "@typescript-eslint/eslint-plugin": "7.5.0",
-    "@typescript-eslint/parser": "7.6.0",
+    "@types/node": "20.12.12",
+    "@typescript-eslint/eslint-plugin": "7.9.0",
+    "@typescript-eslint/parser": "7.9.0",
     "eslint": "8.57.0",
@@ -42,8 +42,8 @@ "eslint-config-prettier": "9.1.0",
     "eslint-plugin-import": "2.29.1",
-    "eslint-plugin-jest": "27.9.0",
+    "eslint-plugin-jest": "28.5.0",
     "eslint-plugin-jsx-a11y": "6.8.0",
     "eslint-plugin-promise": "6.1.1",
     "eslint-plugin-security-node": "1.1.4",
-    "eslint-plugin-unused-imports": "3.1.0",
-    "glob": "10.3.12",
+    "eslint-plugin-unused-imports": "3.2.0",
+    "glob": "10.3.15",
     "husky": "9.0.11",
@@ -50,0 +50,0 @@ "jest": "29.7.0",

README.md

@@ -202,6 +202,2 @@ # [PostCSS Prefix Wrap](https://github.com/dbtedman/postcss-prefixwrap)
 
-[![SAST GitHub Pipeline](https://img.shields.io/github/actions/workflow/status/dbtedman/postcss-prefixwrap/sast.yml?branch=main&style=for-the-badge&logo=github&label=sast)](https://github.com/dbtedman/postcss-prefixwrap/actions/workflows/sast.yml)
-[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/dbtedman/postcss-prefixwrap/badge?style=for-the-badge)](https://api.securityscorecards.dev/projects/github.com/dbtedman/postcss-prefixwrap)
-[![OpenSSF Best Practices](https://bestpractices.coreinfrastructure.org/projects/6622/badge)](https://bestpractices.coreinfrastructure.org/projects/6622)
-
 Read our [Security Guide](SECURITY.md) to learn how security is considered during the development and operation of this
@@ -208,0 +204,0 @@ plugin.

SECURITY.md

 # [PostCSS Prefix Wrap](./README.md) // Security
 
 [![SAST GitHub Pipeline](https://img.shields.io/github/actions/workflow/status/dbtedman/postcss-prefixwrap/sast.yml?branch=main&style=for-the-badge&logo=github&label=sast)](https://github.com/dbtedman/postcss-prefixwrap/actions/workflows/sast.yml)
-[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/dbtedman/postcss-prefixwrap/badge?style=for-the-badge)](https://api.securityscorecards.dev/projects/github.com/dbtedman/postcss-prefixwrap)
-[![OpenSSF Best Practices](https://bestpractices.coreinfrastructure.org/projects/6622/badge)](https://bestpractices.coreinfrastructure.org/projects/6622)
+[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/dbtedman/postcss-prefixwrap/badge?style=for-the-badge)](https://www.bestpractices.dev/en/projects/6622)
 
 Outlines how security is considered during the development of PostCSS Prefix Wrap.
 
+-   [Provenance](#provenance)
 -   [Dependency Vulnerability and Code Scanning](#dependency-vulnerability-and-code-scanning)
@@ -15,2 +15,6 @@ -   [Security Disclosure Policy](#security-disclosure-policy)
 
+## Provenance
+
+Since `v1.47.0`, [provenance attestations (docs.npmjs.com)](https://docs.npmjs.com/generating-provenance-statements) are provided alongside build artefacts.
+
 ## Dependency Vulnerability and Code Scanning
@@ -23,3 +27,2 @@
 -   [OSV Scanning](https://osv.dev/)
--   [Semgrep](https://semgrep.dev)
 -   [Snyk code analysis](https://snyk.io/product/snyk-code/)
@@ -26,0 +29,0 @@ -   [Snyk dependency scanning](https://snyk.io/product/open-source-security-management/)

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Worsened metrics

Total package byte prevSize

43600

decreased by-1.15%

Number of lines in readme file

208

decreased by-1.89%

No dependency changes