twilio-sync - npm Package Compare versions

Comparing version 3.0.6-rc.2 to 3.0.6-rc.3

CHANGELOG.md

@@ -6,2 +6,11 @@ # Change Log
 
+### [3.0.6-rc.3](https://github.com/twilio/rtd-sdk-monorepo-js/compare/twilio-sync@3.0.6-rc.2...twilio-sync@3.0.6-rc.3) (2021-11-11)
+
+
+### Bug Fixes
+
+* Remove the post-install script in favour of the "react-native" option ([0fe352d](https://github.com/twilio/rtd-sdk-monorepo-js/commit/0fe352d45e50cec78e880affee589009055d5338))
+
+
+
 ### [3.0.6-rc.2](https://github.com/twilio/rtd-sdk-monorepo-js/compare/twilio-sync@3.0.6-rc.1...twilio-sync@3.0.6-rc.2) (2021-11-10)
@@ -8,0 +17,0 @@

package.json

 {
   "name": "twilio-sync",
-  "version": "3.0.6-rc.2",
+  "version": "3.0.6-rc.3",
   "description": "Twilio Sync client library",
-  "main": "./dist/lib.js",
-  "browser": "./dist/browser.js",
-  "types": "./dist/lib.d.ts",
+  "main": "./builds/lib.js",
+  "browser": "./builds/browser.js",
+  "react-native": "./dist/index.js",
+  "types": "./builds/lib.d.ts",
   "author": "Twilio",
   "license": "MIT",
   "files": [
-    "dist/docs",
+    "docs",
     "dist/**/*.d.ts",
     "dist/**/*.js",
     "dist/**/*.map",
-    "dist/post-install.js",
+    "builds/**/*.d.ts",
+    "builds/**/*.js",
+    "builds/**/*.map",
     "README.md",
@@ -20,3 +23,3 @@ "LICENSE"
   "scripts": {
-    "clean": "rm -rf ./coverage ./dist",
+    "clean": "rm -rf ./coverage ./dist ./builds ./docs",
     "lint": "npx tslint -p ./tslint.json",
@@ -28,15 +31,14 @@ "lint:fix": "npx tslint -p ./tslint.json --fix",
     "ssri": "yarn ssri:bundle && yarn ssri:min",
-    "ssri:bundle": "openssl dgst -sha256 -binary ./dist/twilio-sync.js | openssl base64 -A | (printf \"sha256-\" && cat)  > ./dist/twilio-sync.sri",
-    "ssri:min": "openssl dgst -sha256 -binary ./dist/twilio-sync.min.js | openssl base64 -A | (printf \"sha256-\" && cat) > ./dist/twilio-sync.min.sri",
-    "sourceMapReport:html": "npx source-map-explorer@2.5.2 ./dist/lib.js --html ./dist/lib.report.html --no-border-checks",
-    "sourceMapReport:json": "npx source-map-explorer@2.5.2 ./dist/lib.js --json ./dist/lib.report.json --no-border-checks",
+    "ssri:bundle": "openssl dgst -sha256 -binary ./builds/twilio-sync.js | openssl base64 -A | (printf \"sha256-\" && cat)  > ./builds/twilio-sync.sri",
+    "ssri:min": "openssl dgst -sha256 -binary ./builds/twilio-sync.min.js | openssl base64 -A | (printf \"sha256-\" && cat) > ./builds/twilio-sync.min.sri",
+    "sourceMapReport:html": "npx source-map-explorer@2.5.2 ./builds/lib.js --html ./builds/lib.report.html --no-border-checks",
+    "sourceMapReport:json": "npx source-map-explorer@2.5.2 ./builds/lib.js --json ./builds/lib.report.json --no-border-checks",
     "docs": "npx typedoc --options ./typedoc.json",
     "ci": "yarn clean && yarn lint && yarn build && yarn ssri && yarn docs",
-    "precommit": "yarn lint:fix && yarn test:unit && yarn test:integration",
-    "postinstall": "node -e \"if (require('fs').existsSync('./dist/post-install.js')) require('child_process').exec('node ./dist/post-install.js', console.log);\""
+    "precommit": "yarn lint:fix && yarn test:unit && yarn test:integration"
   },
   "dependencies": {
     "@babel/runtime": "^7.14.5",
-    "@twilio/declarative-type-validator": "^0.1.10-rc.2",
-    "@twilio/operation-retrier": "^4.0.6-rc.2",
+    "@twilio/declarative-type-validator": "^0.1.10-rc.3",
+    "@twilio/operation-retrier": "^4.0.6-rc.3",
     "core-js": "^3.17.3",
@@ -46,3 +48,3 @@ "iso8601-duration": "=1.2.0",
     "platform": "^1.3.6",
-    "twilsock": "^0.12.1-rc.2",
+    "twilsock": "^0.12.1-rc.3",
     "uuid": "^3.3.2"
@@ -92,3 +94,2 @@ },
     "rollup": "^2.51.1",
-    "rollup-plugin-copy": "^3.4.0",
     "rollup-plugin-polyfill-node": "^0.6.2",
@@ -95,0 +96,0 @@ "rollup-plugin-terser": "^7.0.2",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Install scripts

Supply chain risk

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

11382214

increased by1.37%

Dev dependency count

55

decreased by-1.79%

Number of package files

100

increased by112.77%

Lines of code

52967

increased by4.49%

Number of high supply chain risk alerts

0

decreased by-100%

Number of low supply chain risk alerts

1

decreased by-75%

Worsened metrics

Number of medium supply chain risk alerts

1

increased byInfinity%

Dependency changes

• Updated@twilio/declarative-type-validator@^0.1.10-rc.3

• Updated@twilio/operation-retrier@^4.0.6-rc.3

• Updatedtwilsock@^0.12.1-rc.3