New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
rollup-plugin-sri
Advanced tools
rollup-plugin-sri - npm Package Compare versions
Comparing version 1.2.4 to 1.2.5
| interface PluginOptions { | ||
| /** | ||
| * A list of strings you can provide that the plugin will use to match. | ||
| * it will then try to compute an integrity attribute for the matched tag. | ||
| * A list of strings you can provide that the plugin will use to match html tags with. | ||
| * It will then try to compute an integrity attribute for the matched tag. | ||
| * Currently it only matches script tags and link with rel=stylesheet as per specification. | ||
@@ -13,4 +13,6 @@ * see [the W3C spec](https://www.w3.org/TR/SRI/#elements) for more information. | ||
| * A list of hashing algorithms to use when computing the integrity attribute. | ||
| * The hashing algorithm has to be supported by the nodejs version you're running on. | ||
| * Standard hash functions are: `sha256`, `sha384` and `sha512`. | ||
| * The hashing algorithm has to be supported by the nodejs version you're running on and by the Browser you're targeting. | ||
| * Browsers will ignore unknown hashing functions. | ||
| * Standard hash functions as defined in the [subresource integrity specification](https://w3c.github.io/webappsec-subresource-integrity/#hash-functions) are: `sha256`, `sha384` and `sha512`. | ||
| * | ||
| * > NOTE: While browser vendors are free to support more algorithms than those stated above, | ||
@@ -22,4 +24,4 @@ * > they generally do not accept `sha1` and `md5` hashes. | ||
| /** | ||
| * You can also specify the value for the crossorigin attribute. | ||
| * This attribute has to be set to prevent cross-origin data leakage. | ||
| * Specifies the value for the crossorigin attribute. | ||
| * This attribute has to be set on the generated html tags to prevent cross-origin data leakage. | ||
| * The default value `anonymous` should be okay for normal use. | ||
@@ -26,0 +28,0 @@ * see: [the W3C spec](https://www.w3.org/TR/SRI/#cross-origin-data-leakage) for details. |
| /* rollup-plugin-sri | ||
| v1.2.3 | ||
| v1.2.4 | ||
| By Jonas Kruckenberg <iterpre@protonmail.com> (https://jonaskruckenberg.de) | ||
| 2020-07-17T15:25:08.933Z | ||
| 2020-07-17T15:26:30.527Z | ||
| */ | ||
@@ -6,0 +6,0 @@ import cheerio from 'cheerio'; |
| /* rollup-plugin-sri | ||
| v1.2.3 | ||
| v1.2.4 | ||
| By Jonas Kruckenberg <iterpre@protonmail.com> (https://jonaskruckenberg.de) | ||
| 2020-07-17T15:25:08.933Z | ||
| 2020-07-17T15:26:30.527Z | ||
| */ | ||
@@ -6,0 +6,0 @@ 'use strict'; |
| { | ||
| "name": "rollup-plugin-sri", | ||
| "version": "1.2.4", | ||
| "version": "1.2.5", | ||
| "main": "dist/index.js", | ||
@@ -5,0 +5,0 @@ "module": "dist/index.es.js", |
No alert changes
Improved metrics
- Total package byte prevSize
- increased by0.91%
28458
- Lines of code
- increased by0.59%
340
No dependency changes