Gathering detailed insights and metrics for @adonisjs/ace
Gathering detailed insights and metrics for @adonisjs/ace
Installations
npm install @adonisjs/aceScore
90.5
Supply Chain
78.2
Quality
86.4
Maintenance
100
Vulnerability
99.6
License
Releases
106
Allow exceptions to self handle themselves
v13.3.0
Published on 09 Oct 2024
Make Kernel.errorHandler public
v13.2.0
Published on 05 Sept 2024
Add kernel.hasCommand method
v13.1.0
Published on 19 Jun 2024
Remove absoluteFilePath leaking in the commands metadata json file
v13.0.1
Published on 02 Jun 2024
Stable major release
v13.0.0
Published on 07 Jan 2024
Update CLIUI
v12.3.2-6
Published on 27 Dec 2023
Developer
adonisjs
Developer Guide
BETA
Module System
ESM
Min. Node Version
>=18.16.0
Typescript Support
Yes
Node Version
20.17.0
NPM Version
10.8.2
Statistics
368 Stars
632 Commits
35 Forks
12 Watching
3 Branches
13 Contributors
Updated on 24 Nov 2024
Languages
TypeScript (99.54%)
Mermaid (0.4%)
Shell (0.03%)
JavaScript (0.03%)
Total Downloads
Cumulative downloads
Total Downloads
5,352,769
Last day
7%
6,955
Compared to previous day
Last week
9.6%
39,501
Compared to previous week
Last month
4.3%
161,853
Compared to previous month
Last year
58.2%
1,666,751
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
11
Dev Dependencies
21
Versions
@adonisjs/ace
Introduction
Ace is the command-line framework for Node.js. It is built with testing in mind, is light weight in comparison to other CLI frameworks, and offers a clean API for creating CLI commands.
Official Documentation
The documentation is available on the official website
Contributing
One of the primary goals of AdonisJS is to have a vibrant community of users and contributors who believes in the principles of the framework.
We encourage you to read the contribution guide before contributing to the framework.
Code of Conduct
In order to ensure that the AdonisJS community is welcoming to all, please review and abide by the Code of Conduct.
License
AdonisJS Ace is open-sourced software licensed under the MIT license.
No vulnerabilities found.
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
0 existing vulnerabilities detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE.md:0
- Info: FSF or OSI recognized license: MIT License: LICENSE.md:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/adonisjs/.github/docs/SECURITY.md:1
- Info: Found linked content: github.com/adonisjs/.github/docs/SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/adonisjs/.github/docs/SECURITY.md:1
- Info: Found text in security policy: github.com/adonisjs/.github/docs/SECURITY.md:1
Reason
8 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 7
Reason
Found 2/20 approved changesets -- score normalized to 1
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/checks.yml:1
- Warn: topLevel 'contents' permission set to 'write': .github/workflows/release.yml:4
- Info: no jobLevel write permissions found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/labels.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/adonisjs/ace/labels.yml/13.x?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/labels.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/adonisjs/ace/labels.yml/13.x?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/adonisjs/ace/release.yml/13.x?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/adonisjs/ace/release.yml/13.x?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/release.yml:28
- Info: 0 out of 3 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 1 third-party GitHubAction dependencies pinned
- Info: 0 out of 1 npmCommand dependencies pinned
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 13 are checked with a SAST tool
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch '13.x'
Score
4.8
/10
Last Scanned on 2024-11-25
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More