npmpackage.info

Gathering detailed insights and metrics for @atom-ide-community/nuclide-watchman-helpers

@atom-ide-community/nuclide-watchman-helpers - 0.8.3 | npmpackage.info

@atom-ide-community/nuclide-watchman-helpers

Atom IDE packages for Atom

0.8.3

NOASSERTION

JavaScript

61.67 kB

2.5

Installations

npm install @atom-ide-community/nuclide-watchman-helpers

Developer Guide

BETA

Typescript

No

Module System

CommonJS

Node Version

15.8.0

NPM Version

6.14.11 Pull Requests

Open

17

Total

97

Closed

25

Merged

55

Issues

Open

8

Total

15

Closed

7

Releases

v3.4.0

Updated on Jul 15, 2021

v3.3.0

Updated on Jul 12, 2021

v3.2.0

Updated on Jun 26, 2021

v3.1.1

Updated on Jun 17, 2021

v3.1.0

Updated on Jun 15, 2021

v3.0.0

Updated on Jun 09, 2021

View All 44 releases

Languages

JavaScript

TypeScript

Less

CSS

Python

Shell

JavaScript (96.23%)

TypeScript (2.05%)

Less (1.48%)

CSS (0.2%)

Python (0.02%)

Shell (0.02%)

Developer

atom-ide-community

Download Statistics

Total Downloads

Last Day

Last Week

Last Month

Last Year

GitHub Statistics

NOASSERTION License

45 Stars

551 Commits

10 Forks

3 Watchers

24 Branches

13 Contributors

Updated on Jan 27, 2025

Maintainers

View All 13 Contributors

Package Meta Information

Latest Version

0.8.3

Package Id

@atom-ide-community/nuclide-watchman-helpers@0.8.3

Unpacked Size

61.67 kB

Size

21.43 kB

File Count

NPM Version

6.14.11

Node Version

15.8.0

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

NaN

Compared to previous day

Last Week

NaN

Compared to previous week

Last Month

NaN

Compared to previous month

Last Year

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

event-kit fb-watchman log4js rxjs-compat @atom-ide-community/nuclide-commons

ERROR: No README data found!

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

9

License

Determines if the project has defined a license.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:86: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:101: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:123: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/CI.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:130: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/CI.yml:135: update your workflow using https://app.stepsecurity.io/secureworkflow/atom-community/atom-ide-base/CI.yml/master?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/CI.yml:139
Info: 0 out of 8 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 7 third-party GitHubAction dependencies pinned
Info: 0 out of 1 npmCommand dependencies pinned

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

Security-Policy

Determines if the project has published a security policy.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Reason

66 existing vulnerabilities detected

Details

Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
Warn: Project is vulnerable to: GHSA-hxwm-x553-x359
Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw
Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
Warn: Project is vulnerable to: GHSA-cwfw-4gq5-mrqx
Warn: Project is vulnerable to: GHSA-g95f-p29q-9xw4
Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
Warn: Project is vulnerable to: GHSA-w8qv-6jwh-64r5
Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Warn: Project is vulnerable to: GHSA-9vvw-cc9w-f27h
Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
Warn: Project is vulnerable to: GHSA-w573-4hg7-7wgq
Warn: Project is vulnerable to: GHSA-h6ch-v84p-w6p9
Warn: Project is vulnerable to: GHSA-p3vf-v8qc-cwcr
Warn: Project is vulnerable to: GHSA-gx9m-whjm-85jf
Warn: Project is vulnerable to: GHSA-mmhx-hmjr-r674
Warn: Project is vulnerable to: GHSA-vhxf-7vqr-mrjg
Warn: Project is vulnerable to: GHSA-pfrx-2q88-qq97
Warn: Project is vulnerable to: GHSA-qh2h-chj9-jffq
Warn: Project is vulnerable to: GHSA-43f8-2h32-f4cj
Warn: Project is vulnerable to: GHSA-rc47-6667-2j5j
Warn: Project is vulnerable to: GHSA-qqgx-2p2h-9c37
Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
Warn: Project is vulnerable to: GHSA-896r-f27r-55mw
Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9
Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm
Warn: Project is vulnerable to: GHSA-82v2-mx6x-wq7q
Warn: Project is vulnerable to: GHSA-4r62-v4vq-hr96
Warn: Project is vulnerable to: GHSA-5v2h-r2cx-5xgj
Warn: Project is vulnerable to: GHSA-rrrm-qjm4-v8hf
Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
Warn: Project is vulnerable to: GHSA-hxm2-r34f-qmc5
Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h
Warn: Project is vulnerable to: GHSA-8hfj-j24r-96c4
Warn: Project is vulnerable to: GHSA-wc69-rhjr-hc9g
Warn: Project is vulnerable to: GHSA-qrpm-p2h7-hrv2
Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
Warn: Project is vulnerable to: GHSA-px4h-xg32-q955
Warn: Project is vulnerable to: GHSA-hj48-42vr-x3v9
Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp
Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
Warn: Project is vulnerable to: GHSA-x3m3-4wpv-5vgc
Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Warn: Project is vulnerable to: GHSA-g4rg-993r-mgx7
Warn: Project is vulnerable to: GHSA-4rq4-32rv-6wp6
Warn: Project is vulnerable to: GHSA-64g7-mvw6-v9qj
Warn: Project is vulnerable to: GHSA-3qxh-p7jc-5xh6
Warn: Project is vulnerable to: GHSA-3jfq-g458-7qm9
Warn: Project is vulnerable to: GHSA-r628-mhmh-qjhw
Warn: Project is vulnerable to: GHSA-9r2w-394v-53qc
Warn: Project is vulnerable to: GHSA-5955-9wpr-37jh
Warn: Project is vulnerable to: GHSA-qq89-hq3f-393p
Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
Warn: Project is vulnerable to: GHSA-4wf5-vphf-c2xc
Warn: Project is vulnerable to: GHSA-jgrx-mgxx-jf9v
Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Warn: Project is vulnerable to: GHSA-cf4h-3jhx-xvhq
Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Warn: Project is vulnerable to: GHSA-c4w7-xm78-47vh
Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp

Score

2.5

/10

Last Scanned on 2025-07-14

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More