uvm - npm Package Compare versions
Comparing version 0.0.0 to 1.0.0
| { | ||
| "name": "uvm", | ||
| "version": "0.0.0", | ||
| "version": "1.0.0", | ||
| "description": "Universal Virtual Machine for Node and Browser", | ||
@@ -9,2 +9,5 @@ "main": "index.js", | ||
| }, | ||
| "browser": { | ||
| "./lib/uvm/bridge.js": "./lib/uvm/bridge.browser.js" | ||
| }, | ||
| "scripts": { | ||
@@ -25,5 +28,8 @@ "test-browser": "node npm/test-browser.js", | ||
| "license": "Apache-2.0", | ||
| "dependencies": { | ||
| "inherits": "2.0.3", | ||
| "lodash": "4.17.2" | ||
| }, | ||
| "devDependencies": { | ||
| "async": "2.1.2", | ||
| "browserify": "13.1.1", | ||
| "colors": "1.1.2", | ||
@@ -45,3 +51,2 @@ "editorconfig": "0.13.2", | ||
| "karma-mocha-reporter": "2.2.0", | ||
| "lodash": "4.17.1", | ||
| "mocha": "3.1.2", | ||
@@ -51,5 +56,4 @@ "nsp": "2.6.2", | ||
| "parse-gitignore": "0.3.1", | ||
| "shelljs": "0.7.5", | ||
| "recursive-readdir": "^2.1.0", | ||
| "watchify": "3.7.0" | ||
| "shelljs": "0.7.5" | ||
| }, | ||
@@ -56,0 +60,0 @@ "repository": { |
| # uvm | ||
| Module that exposes an event emitter to send data across contexts (vm in node and iframe in browser) | ||
| ## Usage | ||
| ``` | ||
| var uvm = require('uvm'); | ||
| uvm.createHost({ | ||
| bootstrap: `bridge.on('ping', function () { | ||
| bridge.send('pong', Date.now()) | ||
| });' | ||
| }, function (err, bridge) { | ||
| bridge.on('pong', console.log); | ||
| bridge.send('ping'); | ||
| }); | ||
| ``` |
New alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Fixed alerts
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by178.13%
68918
- Dev dependency count
- decreased by-11.54%
23
- Number of package files
- increased by277.78%
34
- Lines of code
- increased byInfinity%
1073
- Number of low quality alerts
- decreased by-100%
0
- Number of lines in readme file
- increased by900%
20
Worsened metrics
- Dependency count
- increased byInfinity%
2
- Number of low supply chain risk alerts
- increased byInfinity%
9
Dependency changes
+ Addedinherits@2.0.3
+ Addedlodash@4.17.2
+ Addedinherits@2.0.3(transitive)
+ Addedlodash@4.17.2(transitive)