pouchdb-selector-core - npm Package Compare versions

Comparing version 0.0.0 to 6.2.0

package.json

 {
   "name": "pouchdb-selector-core",
-  "version": "0.0.0",
-  "description": "placeholder for pouchdb-selector-core package",
-  "main": "index.js",
-  "author": "Nolan Lawson <nolan@nolanlawson.com>",
-  "license": "Apache-2.0"
+  "version": "6.2.0",
+  "description": "PouchDB's core selector code",
+  "main": "./lib/index.js",
+  "keywords": [],
+  "author": "Will Holley <will@arandomurl.com>",
+  "license": "Apache-2.0",
+  "repository": "https://github.com/pouchdb/pouchdb",
+  "jsnext:main": "./lib/index.es.js",
+  "dependencies": {
+    "pouchdb-collate": "6.2.0",
+    "pouchdb-utils": "6.2.0"
+  },
+  "files": [
+    "lib",
+    "dist",
+    "tonic-example.js"
+  ]
 }

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Empty package

Supply chain risk

Package does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

No repository

Supply chain risk

Package does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

44726

increased by19603.08%

Number of package files

5

increased by150%

Lines of code

927

increased byInfinity%

Number of low quality alerts

1

decreased by-50%

Number of medium quality alerts

0

decreased by-100%

Number of lines in readme file

27

increased byInfinity%

Worsened metrics

Dependency count

2

increased byInfinity%

Number of medium supply chain risk alerts

2

increased by100%

Dependency changes

• + Addedpouchdb-collate@6.2.0

• + Addedpouchdb-utils@6.2.0

• + Addedargsarray@0.0.1(transitive)

• + Addedclone-buffer@1.0.0(transitive)

• + Addedimmediate@3.0.6(transitive)

• + Addedinherits@2.0.3(transitive)

• + Addedlie@3.1.1(transitive)

• + Addedpouchdb-collate@6.2.0(transitive)

• + Addedpouchdb-collections@6.2.0(transitive)

• + Addedpouchdb-errors@6.2.0(transitive)

• + Addedpouchdb-promise@6.2.0(transitive)

• + Addedpouchdb-utils@6.2.0(transitive)