vue-screen
Advanced tools
vue-screen - npm Package Compare versions
Comparing version 1.3.0 to 1.4.0-rc1
| { | ||
| "name": "vue-screen", | ||
| "version": "1.3.0", | ||
| "version": "1.4.0-rc1", | ||
| "description": "Reactive window size and media query states for Vue components. Integrates with most UI frameworks.", | ||
@@ -18,6 +18,8 @@ "keywords": [ | ||
| "module": "dist/vue-screen.esm.js", | ||
| "types": "types/index.d.ts", | ||
| "scripts": { | ||
| "test": "npm run lint && npm run test:unit && npm run test:e2e", | ||
| "test:unit": "mocha --require @babel/register --timeout 10000 --exit 'tests/units/*.spec.js'", | ||
| "test": "npm run lint && npm run test:unit && npm run test:e2e && npm run test:types", | ||
| "test:unit": "mocha --require @babel/register --timeout 5000 --exit 'tests/units/*.spec.js'", | ||
| "test:e2e": "node tests/e2e/runner.js", | ||
| "test:types": "tsc -p types/test", | ||
| "build:browser": "rollup -c rollup.config.browser.js", | ||
@@ -34,2 +36,7 @@ "build:cjs": "rollup -c rollup.config.cjs.js", | ||
| }, | ||
| "files": [ | ||
| "src", | ||
| "dist/*.js", | ||
| "types/*.d.ts" | ||
| ], | ||
| "author": "Matteo Rigon", | ||
@@ -47,2 +54,5 @@ "license": "MIT", | ||
| "@babel/register": "^7.4.0", | ||
| "@types/babel__core": "^7.1.5", | ||
| "@types/babel__template": "^7.0.2", | ||
| "@types/terser-webpack-plugin": "^2.2.0", | ||
| "babel-loader": "^8.0.5", | ||
@@ -66,2 +76,3 @@ "chai": "^4.2.0", | ||
| "rollup-plugin-uglify": "^6.0.2", | ||
| "typescript": "^3.8.2", | ||
| "vue": "^2.6.10", | ||
@@ -68,0 +79,0 @@ "webpack": "^4.30.0", |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Native code
Supply chain riskContains native code (e.g., compiled binaries or shared libraries). Including native code can obscure malicious behavior.
Found 2 instances in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Improved metrics
- Number of low supply chain risk alerts
- decreased by-100%
0
- Number of medium supply chain risk alerts
- decreased by-50%
1
Worsened metrics
- Total package byte prevSize
- decreased by-93.09%
45937
- Dev dependency count
- increased by14.81%
31
- Number of package files
- decreased by-73.42%
21
- Lines of code
- decreased by-91.99%
1118
- Number of low quality alerts
- increased byInfinity%
1