npmpackage.info

Gathering detailed insights and metrics for @alicloud/tea-util

@alicloud/tea-util - 1.4.10 | npmpackage.info

@alicloud/tea-util

Alibaba Cloud Tea Util

1.4.10

Apache-2.0

133.37 kB

4.3

Installations

npm install @alicloud/tea-util

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Node Version

18.0.0

NPM Version

8.6.0 Score

75.8

Supply Chain

71.3

Quality

83.5

Maintenance

100

Vulnerability

99.3

License

Pull Requests

Open

4

Total

355

Closed

36

Merged

315

Issues

Open

6

Total

11

Closed

5

Releases

v0.0.6

Updated on Mar 04, 2020

v0.0.5

Updated on Mar 02, 2020

v0.0.4

Updated on Feb 27, 2020

v0.0.3

Updated on Feb 19, 2020

v0.0.2

Updated on Feb 11, 2020

v0.0.1

Updated on Feb 11, 2020

View All 6 releases

Languages

Java

Python

C++

PHP

Swift

TypeScript

CMake

Tea

Shell

Ruby

C# (16.97%)

Java (15.64%)

Python (12.04%)

C++ (11.95%)

PHP (11.86%)

Swift (10.11%)

Go (8.39%)

TypeScript (5.99%)

CMake (3.92%)

Tea (2.14%)

Shell (0.77%)

Ruby (0.23%)

Developer

aliyun

Download Statistics

Total Downloads

Last Day

Last Week

Last Month

Last Year

GitHub Statistics

Apache-2.0 License

13 Stars

421 Commits

13 Forks

4 Watchers

11 Branches

21 Contributors

Updated on May 03, 2025

Bundle Size

509.95 kB

Minified

133.37 kB

Minified + Gzipped

Bundlephobia

Maintainers

View All 21 Contributors

Package Meta Information

Latest Version

1.4.10

Package Id

@alicloud/tea-util@1.4.10

Unpacked Size

22.61 kB

Size

5.20 kB

File Count

NPM Version

8.6.0

Node Version

18.0.0

Published on

Jan 16, 2025

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

NaN

Compared to previous day

Last Week

NaN

Compared to previous week

Last Month

NaN

Compared to previous month

Last Year

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@alicloud/tea-typescript @darabonba/typescript kitx

Dev Dependencies

@types/mocha @types/node mocha nyc source-map-support ts-node typescript

English | 简体中文

Alibaba Cloud Tea Util SDK for TypeScript/Node.js

Prerequisite

Node.js >= 8.x

Installation

If you use npm to manage your dependence, you can use the following command to install it and write into package.json dependences:

1$ npm install @alicloud/tea-util -S

Issues

Opening an Issue, Issues not conforming to the guidelines may be closed immediately.

Changelog

Detailed changes for each release are documented in the release notes.

References

Latest Release

License

Apache-2.0

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

9

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

6

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Fuzzing

Determines if the project uses fuzzing.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_csharp.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_csharp.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_csharp.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_csharp.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_csharp.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_csharp.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_go.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_go.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_go.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_go.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_go.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_go.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_java.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_java.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_java.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_java.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_java.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_java.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_php.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_php.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_php.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_php.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_php.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_php.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_python.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_python.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_python.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_python.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_python.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_python.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_swift.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_swift.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_swift.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_swift.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_swift.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_swift.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_swift.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_swift.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_swift.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_swift.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_swift.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_swift.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_typescript.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_typescript.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test_typescript.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_typescript.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/test_typescript.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/aliyun/tea-util/test_typescript.yml/master?enable=pin
Warn: nugetCommand not pinned by hash: .github/workflows/test_csharp.yml:27: pin your dependecies by either enabling central package management (https://learn.microsoft.com/nuget/consume-packages/Central-Package-Management) or using a lockfile (https://learn.microsoft.com/nuget/consume-packages/package-references-in-project-files#locking-dependencies)
Warn: pipCommand not pinned by hash: .github/workflows/test_python.yml:28
Warn: npmCommand not pinned by hash: .github/workflows/test_typescript.yml:32
Info: 0 out of 14 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 10 third-party GitHubAction dependencies pinned
Info: 0 out of 1 nugetCommand dependencies pinned
Info: 0 out of 1 pipCommand dependencies pinned
Info: 0 out of 1 npmCommand dependencies pinned

0

SAST

Determines if the project uses static code analysis.

Score

4.3

/10

Last Scanned on 2025-05-05

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More