Gathering detailed insights and metrics for @har-sdk/validator
Gathering detailed insights and metrics for @har-sdk/validator
HAR SDK enables Node.js developers to easily work with HAR, convert it from OAS/Swagger and Postman collection, and more.
Installations
npm install @har-sdk/validatorDeveloper Guide
BETA
Typescript
Yes
Module System
CommonJS
Node Version
18.20.7
NPM Version
10.8.2
Releases
232
@har-sdk/oas@2.12.2
@har-sdk/oas@2.12.2
Updated on Apr 03, 2025
@har-sdk/openapi-sampler@2.4.2
@har-sdk/openapi-sampler@2.4.2
Updated on Apr 03, 2025
@har-sdk/editor@1.5.14
@har-sdk/editor@1.5.14
Updated on Mar 25, 2025
@har-sdk/validator@2.6.1
@har-sdk/validator@2.6.1
Updated on Mar 25, 2025
@har-sdk/types@1.1.10
@har-sdk/types@1.1.10
Updated on Mar 25, 2025
@har-sdk/postman@2.4.7
@har-sdk/postman@2.4.7
Updated on Mar 25, 2025
Languages
3
TypeScript
JavaScript
Shell
TypeScript (98.24%)
JavaScript (1.72%)
Shell (0.04%)
Developer
NeuraLegion
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
MIT License
11 Stars
157 Commits
5 Forks
15 Watchers
7 Branches
26 Contributors
Updated on Apr 03, 2025
Maintainers
2
Package Meta Information
Latest Version
2.6.1
Package Id
@har-sdk/validator@2.6.1
Unpacked Size
549.13 kB
Size
76.57 kB
File Count
87
NPM Version
10.8.2
Node Version
18.20.7
Published on
Mar 25, 2025
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
6
Dev Dependencies
3
@har-sdk/validator
A validator for HAR v1.2 Spec, OpenAPI and Postman documents.
Setup
1npm i --save @har-sdk/validator
Usage
1import { OpenAPIV2 } from '@har-sdk/types'; 2import { OASValidator, ErrorHumanizer } from '@har-sdk/validator'; 3 4const apiDoc = { 5 swagger: '2.0', 6 host: 'localhost', 7 info: { 8 title: 'Some valid API document' 9 }, 10 paths: {} 11} as OpenAPIV2.Document; 12 13const errors = await new OASValidator().verify(apiDoc as any); 14console.log(errors); 15// [ 16// { 17// "instancePath": "/info", 18// "schemaPath": "#/required", 19// "keyword": "required", 20// "params": { 21// "missingProperty": "version" 22// }, 23// "message": "must have required property 'version'" 24// } 25// ] 26 27const humanizedErrors = await new ErrorHumanizer().humanizeErrors(errors); 28console.log(humanizedErrors); 29// [ 30// { 31// "originalError": { 32// "instancePath": "/info", 33// "schemaPath": "#/required", 34// "keyword": "required", 35// "params": { 36// "missingProperty": "version" 37// }, 38// "message": "must have required property 'version'" 39// }, 40// "message": "the value at /info is missing the required field `version`", 41// "messageParts": [ 42// { 43// "text": "the value at /info", 44// "jsonPointer": "/info" 45// }, 46// { 47// "text": "is missing the required field `version`" 48// } 49// ] 50// } 51// ]
See Error Object
No vulnerabilities found.
Reason
all changesets reviewed
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
no binaries found in the repo
Reason
dependency not pinned by hash detected -- score normalized to 5
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:49: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/auto-build.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/auto-build.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/NeuraLegion/har-sdk/auto-build.yml/master?enable=pin
- Info: 0 out of 9 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 1 third-party GitHubAction dependencies pinned
- Info: 3 out of 3 npmCommand dependencies pinned
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/auto-build.yml:1
- Info: no jobLevel write permissions found
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 30 are checked with a SAST tool
Reason
16 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-h5c3-5r3r-rr8q
- Warn: Project is vulnerable to: GHSA-rmvr-2pp2-xj38
- Warn: Project is vulnerable to: GHSA-xx4v-prfh-6cgc
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-rc47-6667-2j5j
- Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Score
4.1
/10
Last Scanned on 2025-07-07
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More