vizabi-barrankchart - npm Package Compare versions

Comparing version 1.0.0 to 1.0.1

package.json

 {
   "name": "vizabi-barrankchart",
-  "version": "1.0.0",
+  "version": "1.0.1",
   "description": "Bar rank chart tool for Vizabi 📊",
   "main": "index.js",
   "scripts": {
-    "preinstall": "npm link ../vizabi",
+    "link": "npm link ../vizabi",
     "start": "webpack-dev-server",
-    "build": "webpack"
+    "build": "webpack --progress"
   },
@@ -23,4 +23,7 @@ "repository": {
   "devDependencies": {
+    "compare-version": "^0.1.2",
+    "shelljs": "^0.7.7",
+    "vizabi": "^0.20.1-17",
     "vizabi-tool-bundler": "github:vizabi/vizabi-tool-bundler"
   }
 }

src/index.js

@@ -1,5 +0,5 @@
-import './styles.scss';
-import component from './component';
+import "./styles.scss";
+import component from "./component";
 
-export default Vizabi.Tool.extend('BarRankChart', {
+export default Vizabi.Tool.extend("BarRankChart", {
 
@@ -13,32 +13,32 @@ // Run when the tool is created
       component: component,
-      placeholder: '.vzb-tool-viz',
+      placeholder: ".vzb-tool-viz",
       model: ["state.time", "state.entities", "state.marker", "locale", "ui"]
     }, {
-      component: Vizabi.Component.get('timeslider'),
-      placeholder: '.vzb-tool-timeslider',
+      component: Vizabi.Component.get("timeslider"),
+      placeholder: ".vzb-tool-timeslider",
       model: ["state.time", "state.entities", "state.marker", "ui"]
     }, {
-      component: Vizabi.Component.get('dialogs'),
-      placeholder: '.vzb-tool-dialogs',
-      model: ['state', 'ui', 'locale']
+      component: Vizabi.Component.get("dialogs"),
+      placeholder: ".vzb-tool-dialogs",
+      model: ["state", "ui", "locale"]
     }, {
-      component: Vizabi.Component.get('buttonlist'),
-      placeholder: '.vzb-tool-buttonlist',
-      model: ['state', 'ui', 'locale']
+      component: Vizabi.Component.get("buttonlist"),
+      placeholder: ".vzb-tool-buttonlist",
+      model: ["state", "ui", "locale"]
     }, {
-      component: Vizabi.Component.get('treemenu'),
-      placeholder: '.vzb-tool-treemenu',
-      model: ['state.marker', 'state.marker_tags', 'state.time', 'locale']
+      component: Vizabi.Component.get("treemenu"),
+      placeholder: ".vzb-tool-treemenu",
+      model: ["state.marker", "state.marker_tags", "state.time", "locale"]
     }, {
-      component: Vizabi.Component.get('datanotes'),
-      placeholder: '.vzb-tool-datanotes',
-      model: ['state.marker', 'locale']
+      component: Vizabi.Component.get("datanotes"),
+      placeholder: ".vzb-tool-datanotes",
+      model: ["state.marker", "locale"]
     }, {
-      component: Vizabi.Component.get('datawarning'),
-      placeholder: '.vzb-tool-datawarning',
-      model: ['locale']
+      component: Vizabi.Component.get("datawarning"),
+      placeholder: ".vzb-tool-datawarning",
+      model: ["locale"]
     }, {
-      component: Vizabi.Component.get('steppedspeedslider'),
-      placeholder: '.vzb-tool-stepped-speed-slider',
-      model: ['state.time', 'locale']
+      component: Vizabi.Component.get("steppedspeedslider"),
+      placeholder: ".vzb-tool-stepped-speed-slider",
+      model: ["state.time", "locale"]
     }];
@@ -72,7 +72,7 @@
       },
-      "buttons": ['colors', 'find', 'show', 'moreoptions', 'fullscreen', 'presentation'],
+      "buttons": ["colors", "find", "show", "moreoptions", "fullscreen", "presentation"],
       "dialogs": {
-        'popup': ['timedisplay', 'colors', 'find', 'axes', 'show', 'moreoptions'],
-        'sidebar': ['timedisplay', 'colors', 'find'],
-        'moreoptions': ['opacity', 'speed', 'colors', 'presentation', 'about']
+        "popup": ["timedisplay", "colors", "find", "axes", "show", "moreoptions"],
+        "sidebar": ["timedisplay", "colors", "find"],
+        "moreoptions": ["opacity", "speed", "colors", "presentation", "about"]
       },
@@ -79,0 +79,0 @@ presentation: false

New alerts

New author

Supply chain risk

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Found 1 instance in 1 package

Dynamic require

Supply chain risk

Dynamic require can indicate the package is performing dangerous or unsafe dynamic code execution.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

Install scripts

Supply chain risk

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

33406

increased by11.18%

Number of package files

13

increased by30%

Lines of code

708

increased by5.51%

Number of high supply chain risk alerts

0

decreased by-100%

Worsened metrics

Dev dependency count

4

increased by300%

Number of low supply chain risk alerts

3

increased byInfinity%

Number of medium supply chain risk alerts

1

increased byInfinity%

No dependency changes