react-dnd - npm Package Compare versions

Comparing version 7.0.2 to 7.1.0

package.json

 {
 	"name": "react-dnd",
-	"version": "7.0.2",
+	"version": "7.1.0",
 	"description": "Drag and Drop for React",
-	"main": "lib/index.js",
-	"types": "lib/index.d.ts",
+	"main": "lib/cjs/index.js",
+	"types": "lib/cjs/index.d.ts",
 	"repository": {
@@ -16,3 +16,5 @@ "type": "git",
 		"bundle:min": "webpack --mode production --output-filename=ReactDnD.min.js",
-		"transpile": "tsc",
+		"transpile:cjs": "tsc -b tsconfig.cjs.json",
+		"transpile:esm": "tsc -b tsconfig.esm.json",
+		"transpile": "run-p transpile:*",
 		"build": "run-p bundle:* transpile",
@@ -24,4 +26,4 @@ "test": "run-s clean build",
 	"dependencies": {
-		"dnd-core": "^7.0.2",
-		"hoist-non-react-statics": "^3.1.0",
+		"dnd-core": "^7.1.0",
+		"hoist-non-react-statics": "^3.3.0",
 		"invariant": "^2.1.0",
@@ -33,14 +35,14 @@ "lodash": "^4.17.11",
 	"devDependencies": {
-		"@babel/cli": "^7.1.5",
-		"@babel/core": "^7.1.5",
-		"@types/react": "^16.4.18",
-		"@types/react-dom": "^16.0.9",
-		"babel-loader": "^8.0.4",
+		"@babel/cli": "^7.2.3",
+		"@babel/core": "^7.3.4",
+		"@types/react": "^16.8.7",
+		"@types/react-dom": "^16.8.2",
+		"babel-loader": "^8.0.5",
 		"npm-run-all": "^4.1.5",
-		"react": "^16.6.1",
-		"rimraf": "^2.6.2",
-		"ts-loader": "^5.3.0",
-		"typescript": "^3.1.6",
-		"webpack": "^4.23.1",
-		"webpack-cli": "^3.1.2"
+		"react": "^16.8.4",
+		"rimraf": "^2.6.3",
+		"ts-loader": "^5.3.3",
+		"typescript": "^3.3.3333",
+		"webpack": "^4.29.6",
+		"webpack-cli": "^3.2.3"
 	},
@@ -50,3 +52,3 @@ "peerDependencies": {
 	},
-	"gitHead": "22666e78ac62fffee7f8a371b61ecb9c3597f9c8"
+	"gitHead": "3c1a0125eba8738c87a19946dd49b13d433da4df"
 }

New alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Fixed alerts

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

484459

increased by6.29%

Number of package files

99

increased by94.12%

Lines of code

5534

increased by34.52%

Number of low supply chain risk alerts

63

decreased by-3.08%

Dependency changes

• Updateddnd-core@^7.1.0

• Updatedhoist-non-react-statics@^3.3.0