@datapos/datapos-shared 0.3.293 → 0.3.296
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +2 -2
- package/package.json +3 -2
package/README.md
CHANGED
|
@@ -116,13 +116,13 @@ getComponentStatus('alpha');
|
|
|
116
116
|
|
|
117
117
|
### Dependency Check Report
|
|
118
118
|
|
|
119
|
-
The OWASP Dependency Check Report identifies known vulnerabilities in project dependencies. It is generated automatically on each release using the npm package
|
|
119
|
+
The OWASP Dependency Check Report identifies known vulnerabilities in project dependencies. It is generated automatically on each release using the npm package [owasp-dependency-check](https://dependency-check.github.io/DependencyCheck/index.html). We also rely on GitHub Dependabot to continuously check for vulnerabilities across all dependencies.
|
|
120
120
|
|
|
121
121
|
[View the OWASP Dependency Check Report](https://data-positioning.github.io/datapos-shared/dependency-check-report.html)
|
|
122
122
|
|
|
123
123
|
### Dependency Licenses
|
|
124
124
|
|
|
125
|
-
The following table lists top-level production and peer dependencies. All these dependencies (including transitive ones) have been recursively verified to use Apache-2.0, CC0-1.0, or MIT—commercially friendly licenses with minimal restrictions. Developers cloning this repository should independently verify dev and optional dependencies; users of the uploaded library are covered by these checks.
|
|
125
|
+
The following table lists top-level production and peer dependencies. All these dependencies (including transitive ones) have been recursively verified to use Apache-2.0, BSD-2-Clause, CC0-1.0, or MIT—commercially friendly licenses with minimal restrictions. Developers cloning this repository should independently verify dev and optional dependencies; users of the uploaded library are covered by these checks. We do not include unlicensed dependencies. Used to support development activity and not released as part of the production release. Check if you clone. We use the `npm` packages [license-report](https://www.npmjs.com/package/license-report), [license-report-check](https://www.npmjs.com/package/license-report-check) and [license-report-recursive](https://www.npmjs.com/package/license-report-recursive) to identify dependency licenses.
|
|
126
126
|
|
|
127
127
|
<!-- DEPENDENCY_LICENSES_START -->
|
|
128
128
|
| Name | Type | Installed | Latest | Latest Modified |
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@datapos/datapos-shared",
|
|
3
|
-
"version": "0.3.
|
|
3
|
+
"version": "0.3.296",
|
|
4
4
|
"description": "A library containing common constants, types and utilities used across all Data Positioning projects.",
|
|
5
5
|
"license": "MIT",
|
|
6
6
|
"private": false,
|
|
@@ -32,7 +32,7 @@
|
|
|
32
32
|
"nanoid": "^5.1.6"
|
|
33
33
|
},
|
|
34
34
|
"devDependencies": {
|
|
35
|
-
"@datapos/datapos-development": "^0.3.
|
|
35
|
+
"@datapos/datapos-development": "^0.3.291",
|
|
36
36
|
"@types/node": "^24.10.1",
|
|
37
37
|
"@types/prismjs": "^1.26.5",
|
|
38
38
|
"@typescript-eslint/eslint-plugin": "^8.48.1",
|
|
@@ -40,6 +40,7 @@
|
|
|
40
40
|
"eslint": "^9.39.1",
|
|
41
41
|
"eslint-plugin-import": "^2.32.0",
|
|
42
42
|
"jiti": "^2.6.1",
|
|
43
|
+
"license-downloader": "^1.3.3",
|
|
43
44
|
"license-report": "^6.8.1",
|
|
44
45
|
"license-report-check": "^0.1.2",
|
|
45
46
|
"license-report-recursive": "^6.8.2",
|