npmpackage.info

Gathering detailed insights and metrics for @casual-simulation/fast-json-stable-stringify

@casual-simulation/fast-json-stable-stringify - 3.4.0 | npmpackage.info

@casual-simulation/fast-json-stable-stringify

Casual Open Simulation for the Web

3.4.0

NOASSERTION

TypeScript

645.00 B

20,459 4.7

Installations

npm install @casual-simulation/fast-json-stable-stringify

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Min. Node Version

>=8

Node Version

18.20.7

NPM Version

lerna/8.0.0/node@v18.20.7+x64 (linux)

Score

72.2

Supply Chain

99.3

Quality

90.5

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

2

Total

411

Closed

23

Merged

386

Issues

Open

55

Total

196

Closed

141

Releases

337

v3.4.5

Updated on Apr 18, 2025

v3.4.4

Updated on Apr 17, 2025

v3.4.3

Updated on Apr 10, 2025

v3.4.2

Updated on Apr 10, 2025

v3.4.1

Updated on Apr 09, 2025

v3.4.0

Updated on Apr 05, 2025

View All 337 releases

Languages

TypeScript

JavaScript

TeX

Vue

CSS

HTML

Shell

SCSS

Dockerfile

TypeScript (63.5%)

JavaScript (27.57%)

TeX (7.33%)

Vue (1.17%)

CSS (0.26%)

HTML (0.1%)

Shell (0.04%)

SCSS (0.02%)

Dockerfile (0.01%)

Developer

casual-simulation

Download Statistics

Total Downloads

20,459

Last Day

Last Week

148

Last Month

905

Last Year

7,091

GitHub Statistics

NOASSERTION License

50 Stars

13,699 Commits

10 Forks

7 Watchers

259 Branches

13 Contributors

Updated on Apr 25, 2025

Bundle Size

1.15 kB

Minified

645.00 B

Minified + Gzipped

Bundlephobia

Maintainers

View All 13 Contributors

Package Meta Information

Latest Version

3.4.0

Package Id

@casual-simulation/fast-json-stable-stringify@3.4.0

Unpacked Size

161.53 kB

Size

44.38 kB

File Count

NPM Version

lerna/8.0.0/node@v18.20.7+x64 (linux)

Node Version

18.20.7

Published on

Apr 05, 2025

Total Downloads

Cumulative downloads

Total Downloads

20,459

No dependencies detected.

fast-json-stable-stringify

Forked from https://github.com/epoberezkin/fast-json-stable-stringify. Changes include converting to TypeScript and adding the ability to indent JSON output.

Deterministic JSON.stringify() - a faster version of @substack's json-stable-strigify without jsonify.

You can also pass in a custom comparison function.

example

1var stringify = require('fast-json-stable-stringify');
2var obj = { c: 8, b: [{ z: 6, y: 5, x: 4 }, 7], a: 3 };
3console.log(stringify(obj));

output:

{"a":3,"b":[{"x":4,"y":5,"z":6},7],"c":8}

methods

1var stringify = require('fast-json-stable-stringify');

var str = stringify(obj, opts)

Return a deterministic stringified string str from the object obj.

options

cmp

If opts is given, you can supply an opts.cmp to have a custom comparison function for object keys. Your function opts.cmp is called with these parameters:

1opts.cmp({ key: akey, value: avalue }, { key: bkey, value: bvalue });

For example, to sort on the object key names in reverse order you could write:

1var stringify = require('fast-json-stable-stringify');
2
3var obj = { c: 8, b: [{ z: 6, y: 5, x: 4 }, 7], a: 3 };
4var s = stringify(obj, function (a, b) {
5    return a.key < b.key ? 1 : -1;
6});
7console.log(s);

which results in the output string:

{"c":8,"b":[{"z":6,"y":5,"x":4},7],"a":3}

Or if you wanted to sort on the object values in reverse order, you could write:

var stringify = require('fast-json-stable-stringify');

var obj = { d: 6, c: 5, b: [{z:3,y:2,x:1},9], a: 10 };
var s = stringify(obj, function (a, b) {
    return a.value < b.value ? 1 : -1;
});
console.log(s);

which outputs:

{"d":6,"c":5,"b":[{"z":3,"y":2,"x":1},9],"a":10}

cycles

Pass true in opts.cycles to stringify circular property as __cycle__ - the result will not be a valid JSON string in this case.

TypeError will be thrown in case of circular object without this option.

install

With npm do:

npm install fast-json-stable-stringify

benchmark

To run benchmark (requires Node.js 6+):

node benchmark

Results:

fast-json-stable-stringify x 17,189 ops/sec ±1.43% (83 runs sampled)
json-stable-stringify x 13,634 ops/sec ±1.39% (85 runs sampled)
fast-stable-stringify x 20,212 ops/sec ±1.20% (84 runs sampled)
faster-stable-stringify x 15,549 ops/sec ±1.12% (84 runs sampled)
The fastest is fast-stable-stringify

Enterprise support

fast-json-stable-stringify package is a part of Tidelift enterprise subscription - it provides a centralised commercial support to open-source software users, in addition to the support provided by software maintainers.

Security contact

To report a security vulnerability, please use the Tidelift security contact. Tidelift will coordinate the fix and disclosure. Please do NOT report security vulnerability via GitHub issues.

license

MIT

No vulnerabilities found.

10

Maintained

Determines if the project is "actively maintained".

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Packaging

Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.

10

Fuzzing

Determines if the project uses fuzzing.

9

License

Determines if the project has defined a license.

9

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

SAST

Determines if the project uses static code analysis.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/continuous-integration-workflow.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/continuous-integration-workflow.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/continuous-integration-workflow.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/continuous-integration-workflow.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/continuous-integration-workflow.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/continuous-integration-workflow.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/continuous-integration-workflow.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/continuous-integration-workflow.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/continuous-integration-workflow.yml:111: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/continuous-integration-workflow.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/continuous-integration-workflow.yml:113: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/continuous-integration-workflow.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/continuous-integration-workflow.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/continuous-integration-workflow.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/continuous-integration-workflow.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/continuous-integration-workflow.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/copy-ab1-files.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/copy-ab1-files.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/copy-ab1-files.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/copy-ab1-files.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/deploy.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/deploy.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/release.yml/develop?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/release.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:183: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/release.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:189: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/release.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:199: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/release.yml/develop?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:205: update your workflow using https://app.stepsecurity.io/secureworkflow/casual-simulation/casualos/release.yml/develop?enable=pin
Warn: containerImage not pinned by hash: .aws/docker/Dockerfile:1: pin your Docker image by updating ubuntu:latest to ubuntu:latest@sha256:1e622c5f073b4f6bfad6632f2616c7f59ef256e96fe78bf6a595d1dc4376ac02
Warn: containerImage not pinned by hash: .gitpod.Dockerfile:1: pin your Docker image by updating gitpod/workspace-full to gitpod/workspace-full@sha256:a47a68ee7f9da10cd889ccce4661bc73f2c0d5a98d3d087e8bdfc0230b27964c
Warn: containerImage not pinned by hash: Dockerfile:1: pin your Docker image by updating node:18 to node:18@sha256:df9fa4e0e39c9b97e30240b5bb1d99bdb861573a82002b2c52ac7d6b8d6d773e
Warn: containerImage not pinned by hash: Dockerfile.arm32:1: pin your Docker image by updating arm32v7/node:18 to arm32v7/node:18@sha256:fc8707155c351023903e26230a025e6f813c2d53b8b82ad63724c1749f3be3f1
Warn: containerImage not pinned by hash: Dockerfile.arm64:1: pin your Docker image by updating arm64v8/node:18 to arm64v8/node:18@sha256:8464ecf47eab79fe984ce817c6751aac74b386027aadc9945b90de22c568560f
Warn: containerImage not pinned by hash: src/aux-proxy/Dockerfile:1: pin your Docker image by updating node:11 to node:11@sha256:67ca28addce8ae818b144114a9376a6603aba09069b7313618d37b38584abba1
Warn: containerImage not pinned by hash: src/aux-redirector/Dockerfile:1: pin your Docker image by updating node:11 to node:11@sha256:67ca28addce8ae818b144114a9376a6603aba09069b7313618d37b38584abba1
Warn: downloadThenRun not pinned by hash: .aws/docker/Dockerfile:52
Warn: npmCommand not pinned by hash: .gitpod.Dockerfile:16
Warn: downloadThenRun not pinned by hash: Dockerfile:15
Warn: npmCommand not pinned by hash: Dockerfile:17
Warn: npmCommand not pinned by hash: Dockerfile:18
Warn: npmCommand not pinned by hash: Dockerfile.arm64:16
Warn: npmCommand not pinned by hash: Dockerfile.arm64:17
Warn: npmCommand not pinned by hash: src/aux-proxy/Dockerfile:7
Warn: npmCommand not pinned by hash: src/aux-redirector/Dockerfile:7
Warn: downloadThenRun not pinned by hash: .aws/ami/install-nodejs.sh:6
Warn: npmCommand not pinned by hash: .aws/ami/install-nodejs.sh:17
Warn: pipCommand not pinned by hash: install.sh:121
Warn: pipCommand not pinned by hash: install.sh:177
Warn: npmCommand not pinned by hash: .github/workflows/release.yml:61
Warn: npmCommand not pinned by hash: .github/workflows/release.yml:79
Info: 0 out of 14 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 4 third-party GitHubAction dependencies pinned
Info: 0 out of 3 downloadThenRun dependencies pinned
Info: 0 out of 10 npmCommand dependencies pinned
Info: 0 out of 2 pipCommand dependencies pinned
Info: 0 out of 7 containerImage dependencies pinned

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Reason

39 existing vulnerabilities detected

Details

Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
Warn: Project is vulnerable to: GHSA-x4c5-c7rf-jjgv
Warn: Project is vulnerable to: GHSA-rmvr-2pp2-xj38
Warn: Project is vulnerable to: GHSA-xx4v-prfh-6cgc
Warn: Project is vulnerable to: GHSA-8hc4-vh64-cxmj
Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6
Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Warn: Project is vulnerable to: GHSA-36jr-mh4h-2g58
Warn: Project is vulnerable to: GHSA-ghr5-ch3p-vcr6
Warn: Project is vulnerable to: GHSA-434g-2637-qmqr
Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m
Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw
Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p
Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747
Warn: Project is vulnerable to: GHSA-vjh7-7g9h-fjfh
Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
Warn: Project is vulnerable to: GHSA-f7f6-9jq7-3rqj
Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc
Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp
Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
Warn: Project is vulnerable to: GHSA-hhhv-q57g-882q
Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw
Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
Warn: Project is vulnerable to: GHSA-vxvm-qww3-2fh7
Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w
Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
Warn: Project is vulnerable to: GHSA-566m-qj78-rww5
Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j
Warn: Project is vulnerable to: GHSA-x7hr-w5r2-h6wg
Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Warn: Project is vulnerable to: GHSA-76p7-773f-r4q5
Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Warn: Project is vulnerable to: GHSA-5j4c-8p2g-v4jx
Warn: Project is vulnerable to: GHSA-g3ch-rx76-35fx

Score

4.7

/10

Last Scanned on 2025-04-21

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

@casual-simulation/fast-json-stable-stringify

Installations

Developer Guide

Yes

CommonJS

>=8

18.20.7

lerna/8.0.0/node@v18.20.7+x64 (linux)

Score

Pull Requests

2

411

23

386

Issues

55

196

141

Releases

Languages

Developer

Download Statistics

GitHub Statistics

Bundle Size

1.15 kB

645.00 B

Maintainers

Package Meta Information

Total Downloads

20,459

fast-json-stable-stringify

example

methods

var str = stringify(obj, opts)

options

cmp

cycles

install

benchmark

Enterprise support

Security contact

license

10

10

10

10

9

9

0

0

0

0

0

0

0

4.7

/10

Weekly Downloads

Monthly Downloads

Yearly Downloads