npmpackage.info

@har-sdk/validator

HAR SDK enables Node.js developers to easily work with HAR, convert it from OAS/Swagger and Postman collection, and more.

2.5.0

MIT

TypeScript

58.99 kB

18,678 4

Installations

npm install @har-sdk/validator

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Node Version

18.16.0

NPM Version

8.19.3 Pull Requests

Open

9

Total

161

Closed

11

Merged

141

Issues

Open

12

Total

93

Closed

81

Releases

214

@har-sdk/oas@2.10.0

Published on 07 Oct 2024

@har-sdk/postman@2.4.6

Published on 22 Aug 2024

@har-sdk/oas@2.9.3

Published on 22 Aug 2024

@har-sdk/oas@2.9.2

Published on 14 Aug 2024

@har-sdk/openapi-sampler@2.2.1

Published on 14 Aug 2024

@har-sdk/oas@2.9.1

Published on 22 Apr 2024

View all 214 releases

Contributors

Unable to fetch Contributors

View all 25 contributors

Languages

TypeScript

JavaScript

Shell

TypeScript (98.02%)

JavaScript (1.94%)

Shell (0.04%)

Developer

NeuraLegion

Download Statistics

Total Downloads

18,678

Last Day

Last Week

Last Month

325

Last Year

5,361

GitHub Statistics

11 Stars

142 Commits

5 Forks

16 Watching

10 Branches

25 Contributors

Bundle Size

245.25 kB

Minified

58.99 kB

Minified + Gzipped

Bundlephobia

Maintainers

Package Meta Information

Latest Version

2.5.0

Package Id

@har-sdk/validator@2.5.0

Unpacked Size

459.66 kB

Size

66.71 kB

File Count

NPM Version

8.19.3

Node Version

18.16.0

Publised On

08 Jun 2023

Total Downloads

Cumulative downloads

Total Downloads

18,678

Last day

-57.1%

Compared to previous day

Last week

-29.3%

Compared to previous week

Last month

52.6%

325

Compared to previous month

Last year

-11.1%

5,361

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@har-sdk/core ajv ajv-errors ajv-formats semver tslib

Dev Dependencies

@types/js-yaml @types/semver js-yaml

Versions

@har-sdk/validator

A validator for HAR v1.2 Spec, OpenAPI and Postman documents.

Setup

1npm i --save @har-sdk/validator

Usage

1import { OpenAPIV2 } from '@har-sdk/types';
2import { OASValidator, ErrorHumanizer } from '@har-sdk/validator';
3
4const apiDoc = {
5  swagger: '2.0',
6  host: 'localhost',
7  info: {
8    title: 'Some valid API document'
9  },
10  paths: {}
11} as OpenAPIV2.Document;
12
13const errors = await new OASValidator().verify(apiDoc as any);
14console.log(errors);
15// [
16//   {
17//     "instancePath": "/info",
18//     "schemaPath": "#/required",
19//     "keyword": "required",
20//     "params": {
21//       "missingProperty": "version"
22//     },
23//     "message": "must have required property 'version'"
24//   }
25// ]
26
27const humanizedErrors = await new ErrorHumanizer().humanizeErrors(errors);
28console.log(humanizedErrors);
29// [
30//   {
31//     "originalError": {
32//       "instancePath": "/info",
33//       "schemaPath": "#/required",
34//       "keyword": "required",
35//       "params": {
36//         "missingProperty": "version"
37//       },
38//       "message": "must have required property 'version'"
39//     },
40//     "message": "the value at /info is missing the required field `version`",
41//     "messageParts": [
42//       {
43//         "text": "the value at /info",
44//         "jsonPointer": "/info"
45//       },
46//       {
47//         "text": "is missing the required field `version`"
48//       }
49//     ]
50//   }
51// ]

See Error Object

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

9

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

5

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 5

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/auto-build.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
Info: 0 out of 9 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 1 third-party GitHubAction dependencies pinned
Info: 3 out of 3 npmCommand dependencies pinned

0

Maintained

Determines if the project is "actively maintained".

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Fuzzing

Determines if the project uses fuzzing.

0

Security-Policy

Determines if the project has published a security policy.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

4

/10

Last Scanned on 2025-01-27

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More