underscore-plus - npm Package Compare versions

Comparing version 1.6.2 to 1.6.3

lib/underscore-plus.js

 (function() {
-  var isEqual, macModifierKeyMap, nonMacModifierKeyMap, plus, shiftKeyMap, splitKeyPath, _,
+  var isEqual, isPlainObject, macModifierKeyMap, nonMacModifierKeyMap, plus, shiftKeyMap, splitKeyPath, _,
     __slice = [].slice;
@@ -65,2 +65,6 @@
 
+  isPlainObject = function(value) {
+    return _.isObject(value) && !_.isArray(value);
+  };
+
   plus = {
@@ -137,16 +141,14 @@ adviseBefore: function(object, methodName, advice) {
     deepExtend: function() {
-      var key, object, objects, result, value, _i, _len;
-      objects = 1 <= arguments.length ? __slice.call(arguments, 0) : [];
-      result = {};
+      var key, object, objects, result, target, value, _i, _len;
+      target = arguments[0], objects = 2 <= arguments.length ? __slice.call(arguments, 1) : [];
+      result = target;
       for (_i = 0, _len = objects.length; _i < _len; _i++) {
         object = objects[_i];
-        for (key in object) {
-          value = object[key];
-          if (_.isObject(value) && !_.isArray(value)) {
+        if (isPlainObject(result) && isPlainObject(object)) {
+          for (key in object) {
+            value = object[key];
             result[key] = plus.deepExtend(result[key], value);
-          } else {
-            if (result[key] == null) {
-              result[key] = value;
-            }
           }
+        } else {
+          result = plus.deepClone(object);
         }
@@ -153,0 +155,0 @@ }

package.json

 {
   "name": "underscore-plus",
-  "version": "1.6.2",
+  "version": "1.6.3",
   "description": "Underscore plus additional utilities",
@@ -5,0 +5,0 @@ "licenses": [

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

No README

Quality

Package does not have a README. This may indicate a failed publish or a low quality package.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Improved metrics

Lines of code

510

increased by0.2%

Number of medium supply chain risk alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

16745

decreased by-1.56%

Number of package files

3

decreased by-25%

Number of medium quality alerts

1

increased byInfinity%

Number of lines in readme file

0

decreased by-100%

No dependency changes