sandworm: v1.18.0

1.18.0 (2023-02-10)

Features

• add config to disable size scanning (88dda72)
• add license info to tooltip, when available (291991c)
• allow providing custom dep graphs (e3b4a77)
• better license usage data structure (3e373fa)
• better package size estimation (c98752f)
• better treemap package labeling (3bfadd7)
• better vulnerability reporting (e33941e)
• better vulnerability reporting (976dad6)
• build all charts by default (a1db19a)
• charts now display license issues (9b38f08)
• cli now displays licence scanning phase (b5467f8)
• configurable min severity level for charts (2950408)
• expose array with processed dependency data (557cfe4)
• icon now represents severity in node tooltip (8ccfb97)
• include license issue recommendations (f2af2f4)
• include vulnerabilities in exported data (2528072)
• initial commit (f46ae74)
• output all dependency data as csv (eb92647)
• output license usage and issues (99aa988)
• remove svg width and height attributes (b9e3d45)
• support all js package managers (bc2c2e2)
• support json stringified licence data (fff0585)
• support yarn audit (5c701b1)
• universal support for license info (6b8817f)
• update max depth arg type (aac673a)
• update package name (baa9281)

Bug Fixes

• crash for undefined dependencyVulnerabilities (1214155)
• crash when audit returns empty (996c5b8)
• crash when post-processing empty graphs (9bddc17)
• crash when using pnpm with no dependencies (dc4696b)
• generate multiple charts in the same session (552f446)
• include recommendations in license issue output (c23b5ee)
• json license data parsing (c625d06)
• long license strings now truncated in tooltip (50b0403)
• parsing vulnerabilities from empty response (813ceba)
• remove package lock (98bbdf5)
• represent non-prod dependencies (5e04c15)
• root vulnerabilities access (1c39fab)
• treemap now represents root module sizes (958e7b0)