sass - npm Package Compare versions
Comparing version 1.0.0-beta.5.3 to 1.0.0-rc.1
@@ -1,1 +0,1 @@ | ||
| {"name":"sass","description":"A pure JavaScript implementation of Sass.","license":"MIT","bugs":"https://github.com/sass/dart-sass/issues","homepage":"https://github.com/sass/dart-sass","repository":{"type":"git","url":"https://github.com/sass/dart-sass"},"author":{"name":"Natalie Weizenbaum","email":"nweiz@google.com","url":"https://github.com/nex3"},"engines":{"node":">=0.11.8"},"main":"sass.dart.js","bin":"sass.js","keywords":["style","scss","sass","preprocessor","css"],"version":"1.0.0-beta.5.3"} | ||
| {"name":"sass","description":"A pure JavaScript implementation of Sass.","license":"MIT","bugs":"https://github.com/sass/dart-sass/issues","homepage":"https://github.com/sass/dart-sass","repository":{"type":"git","url":"https://github.com/sass/dart-sass"},"author":{"name":"Natalie Weizenbaum","email":"nweiz@google.com","url":"https://github.com/nex3"},"engines":{"node":">=0.11.8"},"main":"sass.dart.js","bin":"sass.js","keywords":["style","scss","sass","preprocessor","css"],"version":"1.0.0-rc.1"} |
@@ -55,3 +55,3 @@ A pure JavaScript implementation of [Sass][sass]. **Sass makes CSS fun again**. | ||
| When installed via NPM, Dart Sass supports a JavaScript API that aims to be | ||
| When installed via npm, Dart Sass supports a JavaScript API that aims to be | ||
| compatible with [Node Sass](https://github.com/sass/node-sass#usage). Full | ||
@@ -58,0 +58,0 @@ compatibility is a work in progress, but Dart Sass currently supports the |
Sorry, the diff of this file is too big to display
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
Uses eval
Supply chain riskPackage uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.31%
649906
- Lines of code
- increased by0.45%
21067
- Number of medium supply chain risk alerts
- decreased by-11.11%
8