npmpackage.info

Gathering detailed insights and metrics for @developertheexplorer/rawlist

@developertheexplorer/rawlist

A collection of common interactive command line user interfaces.

1.0.0

20,516

MIT

TypeScript

5.82 kB

229 6

Installations

npm install @developertheexplorer/rawlist

Developer Guide

BETA

Typescript

No

Module System

ESM

Node Version

16.14.2

NPM Version

lerna/4.0.0/node@v16.14.2+arm64 (darwin)

Score

68.5

Supply Chain

76.8

Quality

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

5

Total

738

Closed

178

Merged

555

Issues

Open

33

Total

889

Closed

856

Releases

211

inquirer@12.4.1

Published on 04 Feb 2025

@inquirer/prompts@7.3.1

Published on 02 Feb 2025

inquirer@12.4.0

Published on 04 Feb 2025

@inquirer/checkbox@4.1.0

Published on 02 Feb 2025

inquirer@12.3.3

Published on 28 Jan 2025

@inquirer/core@10.1.5

Published on 28 Jan 2025

View all 211 releases

Contributors

208

View all 208 contributors

Languages

TypeScript

JavaScript

TypeScript (91.69%)

JavaScript (8.31%)

Developer

SBoudrias

Download Statistics

Total Downloads

229

Last Day

Last Week

Last Month

Last Year

GitHub Statistics

20,516 Stars

1,682 Commits

1,308 Forks

148 Watching

9 Branches

208 Contributors

Maintainers

Package Meta Information

Latest Version

1.0.0

Package Id

@developertheexplorer/rawlist@1.0.0

Unpacked Size

5.82 kB

Size

2.65 kB

File Count

NPM Version

lerna/4.0.0/node@v16.14.2+arm64 (darwin)

Node Version

16.14.2

Total Downloads

Cumulative downloads

Total Downloads

229

Last day

Compared to previous day

Last week

100%

Compared to previous week

Last month

-42.9%

Compared to previous month

Last year

-43.8%

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@inquirer/core chalk

Versions

`@inquirer/rawlist`

Simple interactive command line prompt to display a raw list of choices (single value select) with minimal interaction.

rawlist prompt

Installation

1npm install @inquirer/rawlist
2
3yarn add @inquirer/rawlist

Usage

1import rawlist from '@inquirer/rawlist';
2
3const answer = await rawlist({
4  message: 'Select a package manager',
5  choices: [
6    { name: 'npm', value: 'npm' },
7    { name: 'yarn', value: 'yarn' },
8    { name: 'pnpm', value: 'pnpm' },
9  ],
10});

Options

Property	Type	Required	Description
message	`string`	yes	The question to ask
choices	`Array<{ value: string, name?: string, key?: string }>`	yes	List of the available choices. The `value` will be returned as the answer, and used as display if no `name` is defined. By default, choices will be selected by index. This can be customized by using the `key` option.

License

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Maintained

Determines if the project is "actively maintained".

10

Security-Policy

Determines if the project has published a security policy.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

9

SAST

Determines if the project uses static code analysis.

9

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Fuzzing

Determines if the project uses fuzzing.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:99: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:115: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:117: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:123: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:159: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:161: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:167: update your workflow using https://app.stepsecurity.io/secureworkflow/SBoudrias/Inquirer.js/main.yml/main?enable=pin
Info: 0 out of 20 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 1 third-party GitHubAction dependencies pinned

Score

6

/10

Last Scanned on 2025-02-03

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More