vdom-virtualize - npm Package Compare versions

Comparing version 0.0.13 to 1.0.0

index.js

@@ -26,2 +26,3 @@ /*!
   , VText = require("virtual-dom/vnode/vtext")
+  , VComment = require("./vcomment")
 
@@ -35,2 +36,3 @@ module.exports = createVNode
   if(domNode.nodeType == 3) return createFromTextNode(domNode, key)
+  if(domNode.nodeType == 8) return createFromCommentNode(domNode, key)
   return
@@ -40,6 +42,22 @@ }
 createVNode.fromHTML = function(html, key) {
-  var domNode = document.createElement('div'); // create container
-  domNode.innerHTML = html; // browser parses HTML into DOM tree
-  var child = domNode.children.length ? domNode.children[0] : domNode.firstChild;
-  return createVNode(child, key);
+  var rootNode = null;
+
+  try {
+    // Everything except iOS 7 Safari, IE 8/9, Andriod Browser 4.1/4.3
+    var parser = new DOMParser();
+    var doc = parser.parseFromString(html, 'text/html');
+    rootNode = doc.documentElement;
+  } catch(e) {
+    // Old browsers
+    var ifr = document.createElement('iframe');
+    ifr.setAttribute('data-content', html);
+    ifr.src = 'javascript: window.frameElement.getAttribute("data-content");';
+    document.head.appendChild(ifr);
+    rootNode = ifr.contentDocument.documentElement;
+    setTimeout(function() {
+      ifr.remove(); // Garbage collection
+    }, 0);
+  }
+
+  return createVNode(rootNode, key);
 };
@@ -52,2 +70,7 @@
 
+function createFromCommentNode(cNode) {
+  return new VComment(cNode.nodeValue)
+}
+
+
 function createFromElement(el) {
@@ -54,0 +77,0 @@ var tagName = el.tagName

package.json

 {
   "name": "vdom-virtualize",
-  "version": "0.0.13",
+  "version": "1.0.0",
   "description": "Virtulize any DOM node and turn it into a virtual-dom node.",
   "main": "index.js",
-  "dependencies": {
+  "peerDependencies": {
     "virtual-dom": "2.0.1"
@@ -8,0 +8,0 @@ },

README.md

 # vdom-virtualize
 
+**New in v1.0:** vdom-virtualize now supports comments and does now use peerDependencies to depend on virtual-dom.
+
 ## API
@@ -4,0 +6,0 @@

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

No v1

Quality

Package is not semver >=1. This means it is not stable and does not support ^ ranges.

Found 1 instance in 1 package

Improved metrics

Number of low quality alerts

1

decreased by-50%

Number of lines in readme file

18

increased by12.5%

Number of low supply chain risk alerts

0

decreased by-100%

Worsened metrics

Total package byte prevSize

9525

decreased by-50.39%

Lines of code

295

decreased by-51.88%

Dependency changes

• - Removedvirtual-dom@2.0.1