Rollup-plugin-node-globals, designed to seamlessly inject Node.js globals into your Rollup bundles, saw a minor version update from 1.0.5 to 1.0.6. Both versions share the same core functionality: replicating Browserify's global variable insertion for improved compatibility in browser environments. They depend on "process-es6" and "rollup-plugin-inject" for core functionalities and utilize similar development dependencies like "babel-preset-es2015-rollup," "browserify," and "rollup-plugin-babel" for building and testing.
The upgrade appears to involve subtle internal changes rather than groundbreaking new features. One minor code change is in the repository URL. Version 1.0.5 used a git+ssh address, while version 1.0.6 utilizes a standard git address. This seemingly small change has the largest impact on developers that automatically build docker images using the packages because it avoids possible authentication issues, which are harder to debug. Version 1.0.6 introduced "mkdirp" and "rimraf" as new development dependencies, suggesting potential enhancements or modifications to the build or clean-up processes. Furthermore, the release date shifts from March 17, 2016, to July 27, 2016, indicating approximately four months of development and refinement. For developers already using version 1.0.5, upgrading to 1.0.6 is generally recommended to leverage any bug fixes, performance improvements, or refined development workflows incorporated during that period although no breaking changes are introduced.
The are not vulnerabilities for the version 1.0.6 of the package rollup-plugin-node-globals
