Gathering detailed insights and metrics for @itk-wasm/downsample
Gathering detailed insights and metrics for @itk-wasm/downsample
High performance spatial analysis in a web browser and across programming languages and hardware architectures
Installations
npm install @itk-wasm/downsampleDeveloper Guide
BETA
Typescript
Yes
Module System
ESM
Node Version
22.9.0
NPM Version
10.8.3
Releases
207
ITK-Wasm 1.0.0 Beta 188
itk-wasm-v1.0.0-b.188
Updated on Mar 03, 2025
ITK-Wasm 1.0.0 Beta 187
itk-wasm-v1.0.0-b.187
Updated on Mar 03, 2025
ITK-Wasm 1.0.0 Beta 186
itk-wasm-v1.0.0-b.186
Updated on Mar 03, 2025
ITK-Wasm 1.0.0 Beta 185
itk-wasm-v1.0.0-b.185
Updated on Mar 03, 2025
ITK-Wasm 1.0.0 Beta 184
itk-wasm-v1.0.0-b.184
Updated on Mar 03, 2025
ITK-Wasm 1.0.0 Beta 183
itk-wasm-v1.0.0-b.183
Updated on Mar 03, 2025
Languages
11
Python
TypeScript
C++
JavaScript
HTML
CMake
Shell
CSS
Dockerfile
Batchfile
Makefile
Python (41.22%)
TypeScript (31.62%)
C++ (14.06%)
JavaScript (5.59%)
HTML (4.87%)
CMake (1.78%)
Shell (0.38%)
CSS (0.22%)
Dockerfile (0.09%)
Batchfile (0.09%)
Makefile (0.07%)
Developer
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
Apache-2.0 License
215 Stars
4,648 Commits
54 Forks
13 Watchers
10 Branches
39 Contributors
Updated on Jul 08, 2025
Maintainers
2
Package Meta Information
Latest Version
1.7.1
Package Id
@itk-wasm/downsample@1.7.1
Unpacked Size
2.51 MB
Size
1.76 MB
File Count
182
NPM Version
10.8.3
Node Version
22.9.0
Published on
Jun 20, 2025
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
@itk-wasm/downsample
Pipelines for downsampling images.
Installation
1npm install @itk-wasm/downsample
Usage
Browser interface
Import:
1import { 2 downsampleBinShrink, 3 downsampleLabelImage, 4 downsampleSigma, 5 downsample, 6 gaussianKernelRadius, 7 setPipelinesBaseUrl, 8 getPipelinesBaseUrl, 9} from "@itk-wasm/downsample"
downsampleBinShrink
Apply local averaging and subsample the input image.
1async function downsampleBinShrink(
2 input: Image,
3 options: DownsampleBinShrinkOptions = { shrinkFactors: [] as number[], }
4) : Promise<DownsampleBinShrinkResult>| Parameter | Type | Description |
|---|---|---|
input | Image | Input image |
DownsampleBinShrinkOptions interface:
| Property | Type | Description |
|---|---|---|
shrinkFactors | number[] | Shrink factors |
informationOnly | boolean | Generate output image information only. Do not process pixels. |
webWorker | null or Worker or boolean | WebWorker for computation. Set to null to create a new worker. Or, pass an existing worker. Or, set to false to run in the current thread / worker. |
noCopy | boolean | When SharedArrayBuffer's are not available, do not copy inputs. |
DownsampleBinShrinkResult interface:
| Property | Type | Description |
|---|---|---|
downsampled | Image | Output downsampled image |
webWorker | Worker | WebWorker used for computation. |
downsampleLabelImage
Apply a smoothing anti-alias filter and subsample the input image.
1async function downsampleLabelImage(
2 input: Image,
3 options: DownsampleLabelImageOptions = { shrinkFactors: [] as number[], }
4) : Promise<DownsampleLabelImageResult>| Parameter | Type | Description |
|---|---|---|
input | Image | Input image |
DownsampleLabelImageOptions interface:
| Property | Type | Description |
|---|---|---|
shrinkFactors | number[] | Shrink factors |
cropRadius | number[] | Optional crop radius in pixel units. |
webWorker | null or Worker or boolean | WebWorker for computation. Set to null to create a new worker. Or, pass an existing worker. Or, set to false to run in the current thread / worker. |
noCopy | boolean | When SharedArrayBuffer's are not available, do not copy inputs. |
DownsampleLabelImageResult interface:
| Property | Type | Description |
|---|---|---|
downsampled | Image | Output downsampled image |
webWorker | Worker | WebWorker used for computation. |
downsampleSigma
Compute gaussian kernel sigma values in pixel units for downsampling.
1async function downsampleSigma( 2 options: DownsampleSigmaOptions = { shrinkFactors: [] as number[], } 3) : Promise<DownsampleSigmaResult>
| Parameter | Type | Description |
|---|
DownsampleSigmaOptions interface:
| Property | Type | Description |
|---|---|---|
shrinkFactors | number[] | Shrink factors |
webWorker | null or Worker or boolean | WebWorker for computation. Set to null to create a new worker. Or, pass an existing worker. Or, set to false to run in the current thread / worker. |
noCopy | boolean | When SharedArrayBuffer's are not available, do not copy inputs. |
DownsampleSigmaResult interface:
| Property | Type | Description |
|---|---|---|
sigma | JsonCompatible | Output sigmas in pixel units. |
webWorker | Worker | WebWorker used for computation. |
downsample
Apply a smoothing anti-alias filter and subsample the input image.
1async function downsample( 2 input: Image, 3 options: DownsampleOptions = { shrinkFactors: [] as number[], } 4) : Promise<DownsampleResult>
| Parameter | Type | Description |
|---|---|---|
input | Image | Input image |
DownsampleOptions interface:
| Property | Type | Description |
|---|---|---|
shrinkFactors | number[] | Shrink factors |
cropRadius | number[] | Optional crop radius in pixel units. |
webWorker | null or Worker or boolean | WebWorker for computation. Set to null to create a new worker. Or, pass an existing worker. Or, set to false to run in the current thread / worker. |
noCopy | boolean | When SharedArrayBuffer's are not available, do not copy inputs. |
DownsampleResult interface:
| Property | Type | Description |
|---|---|---|
downsampled | Image | Output downsampled image |
webWorker | Worker | WebWorker used for computation. |
gaussianKernelRadius
Radius in pixels required for effective discrete gaussian filtering.
1async function gaussianKernelRadius( 2 options: GaussianKernelRadiusOptions = { size: [] as number[], sigma: [{}, ], } 3) : Promise<GaussianKernelRadiusResult>
| Parameter | Type | Description |
|---|
GaussianKernelRadiusOptions interface:
| Property | Type | Description |
|---|---|---|
size | number[] | Size in pixels |
sigma | number[] | Sigma in pixel units |
maxKernelWidth | number | Maximum kernel width in pixels. |
maxKernelError | number | Maximum kernel error. |
webWorker | null or Worker or boolean | WebWorker for computation. Set to null to create a new worker. Or, pass an existing worker. Or, set to false to run in the current thread / worker. |
noCopy | boolean | When SharedArrayBuffer's are not available, do not copy inputs. |
GaussianKernelRadiusResult interface:
| Property | Type | Description |
|---|---|---|
radius | JsonCompatible | Output kernel radius. |
webWorker | Worker | WebWorker used for computation. |
setPipelinesBaseUrl
Set base URL for WebAssembly assets when vendored.
1function setPipelinesBaseUrl(
2 baseUrl: string | URL
3) : voidgetPipelinesBaseUrl
Get base URL for WebAssembly assets when vendored.
1function getPipelinesBaseUrl() : string | URL
Node interface
Import:
1import { 2 downsampleBinShrinkNode, 3 downsampleLabelImageNode, 4 downsampleSigmaNode, 5 downsampleNode, 6 gaussianKernelRadiusNode, 7} from "@itk-wasm/downsample"
downsampleBinShrinkNode
Apply local averaging and subsample the input image.
1async function downsampleBinShrinkNode(
2 input: Image,
3 options: DownsampleBinShrinkNodeOptions = { shrinkFactors: [] as number[], }
4) : Promise<DownsampleBinShrinkNodeResult>| Parameter | Type | Description |
|---|---|---|
input | Image | Input image |
DownsampleBinShrinkNodeOptions interface:
| Property | Type | Description |
|---|---|---|
shrinkFactors | number[] | Shrink factors |
informationOnly | boolean | Generate output image information only. Do not process pixels. |
DownsampleBinShrinkNodeResult interface:
| Property | Type | Description |
|---|---|---|
downsampled | Image | Output downsampled image |
downsampleLabelImageNode
Apply a smoothing anti-alias filter and subsample the input image.
1async function downsampleLabelImageNode(
2 input: Image,
3 options: DownsampleLabelImageNodeOptions = { shrinkFactors: [] as number[], }
4) : Promise<DownsampleLabelImageNodeResult>| Parameter | Type | Description |
|---|---|---|
input | Image | Input image |
DownsampleLabelImageNodeOptions interface:
| Property | Type | Description |
|---|---|---|
shrinkFactors | number[] | Shrink factors |
cropRadius | number[] | Optional crop radius in pixel units. |
DownsampleLabelImageNodeResult interface:
| Property | Type | Description |
|---|---|---|
downsampled | Image | Output downsampled image |
downsampleSigmaNode
Compute gaussian kernel sigma values in pixel units for downsampling.
1async function downsampleSigmaNode( 2 options: DownsampleSigmaNodeOptions = { shrinkFactors: [] as number[], } 3) : Promise<DownsampleSigmaNodeResult>
| Parameter | Type | Description |
|---|
DownsampleSigmaNodeOptions interface:
| Property | Type | Description |
|---|---|---|
shrinkFactors | number[] | Shrink factors |
DownsampleSigmaNodeResult interface:
| Property | Type | Description |
|---|---|---|
sigma | JsonCompatible | Output sigmas in pixel units. |
downsampleNode
Apply a smoothing anti-alias filter and subsample the input image.
1async function downsampleNode(
2 input: Image,
3 options: DownsampleNodeOptions = { shrinkFactors: [] as number[], }
4) : Promise<DownsampleNodeResult>| Parameter | Type | Description |
|---|---|---|
input | Image | Input image |
DownsampleNodeOptions interface:
| Property | Type | Description |
|---|---|---|
shrinkFactors | number[] | Shrink factors |
cropRadius | number[] | Optional crop radius in pixel units. |
DownsampleNodeResult interface:
| Property | Type | Description |
|---|---|---|
downsampled | Image | Output downsampled image |
gaussianKernelRadiusNode
Radius in pixels required for effective discrete gaussian filtering.
1async function gaussianKernelRadiusNode( 2 options: GaussianKernelRadiusNodeOptions = { size: [] as number[], sigma: [{}, ], } 3) : Promise<GaussianKernelRadiusNodeResult>
| Parameter | Type | Description |
|---|
GaussianKernelRadiusNodeOptions interface:
| Property | Type | Description |
|---|---|---|
size | number[] | Size in pixels |
sigma | number[] | Sigma in pixel units |
maxKernelWidth | number | Maximum kernel width in pixels. |
maxKernelError | number | Maximum kernel error. |
GaussianKernelRadiusNodeResult interface:
| Property | Type | Description |
|---|---|---|
radius | JsonCompatible | Output kernel radius. |
No vulnerabilities found.
Reason
update tool detected
Details
- Info: detected update tool: Dependabot: .github/dependabot.yaml:1
Reason
30 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0
Reason
11 out of 11 merged PRs checked by a CI test -- score normalized to 10
Reason
project has 30 contributing companies or organizations
Details
- Info: found contributions from: ASIST-SUNY-Albany, BIC-MNI, BRAINSia, InsightSoftwareConsortium, Kitware, KitwareMedical, NA-MIC, OHIF, OpenImaging, SCIInstitute, Slicer, brigham and women's hospital mass general brigham/harvard medical school, conda-forge, dotskapes, fideus labs, gofigure2, imagej, inscight, kitware, kitwaremedical, pritam-rungta, redbrick-ai, reproducible-research, scifio, scikit-build, scipy, semantic-release, the university of iowa, thehackerwithin, xdress
Reason
Found 0/12 approved changesets -- score normalized to 0
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/documentation.yml:150
- Warn: no topLevel permission defined: .github/workflows/clang-format-linter.yml:1
- Warn: no topLevel permission defined: .github/workflows/cxx-python.yml:1
- Warn: no topLevel permission defined: .github/workflows/documentation.yml:1
- Warn: no topLevel permission defined: .github/workflows/examples.yml:1
- Warn: no topLevel permission defined: .github/workflows/javascript-typescript.yml:1
- Warn: no topLevel permission defined: .github/workflows/native.yml:1
- Warn: no topLevel permission defined: .github/workflows/playwright.yml:1
- Warn: no topLevel permission defined: .github/workflows/pr-checks.yml:1
- Warn: no topLevel permission defined: .github/workflows/python-wasm.yml:1
- Info: topLevel permissions set to 'read-all': .github/workflows/scorecard.yml:14
- Warn: no topLevel permission defined: .github/workflows/toolchains.yml:1
- Warn: no topLevel permission defined: .github/workflows/wasi.yml:1
- Info: no jobLevel write permissions found
Reason
binaries present in source code
Details
- Warn: binary detected: packages/compare-images/python/itkwasm-compare-images-wasi/itkwasm_compare_images_wasi/wasm_modules/compare-double-images.wasi.wasm:1
- Warn: binary detected: packages/compare-images/python/itkwasm-compare-images-wasi/itkwasm_compare_images_wasi/wasm_modules/vector-magnitude.wasi.wasm:1
- Warn: binary detected: packages/compress-stringify/python/itkwasm-compress-stringify-wasi/itkwasm_compress_stringify_wasi/wasm_modules/compress-stringify.wasi.wasm:1
- Warn: binary detected: packages/compress-stringify/python/itkwasm-compress-stringify-wasi/itkwasm_compress_stringify_wasi/wasm_modules/parse-string-decompress.wasi.wasm:1
- Warn: binary detected: packages/core/python/itkwasm/test/input/cxx-threads-test.wasi.wasm:1
- Warn: binary detected: packages/core/python/itkwasm/test/input/input-output-files-test.wasi.wasm:1
- Warn: binary detected: packages/core/python/itkwasm/test/input/median-filter-test.wasi.wasm:1
- Warn: binary detected: packages/core/python/itkwasm/test/input/mesh-read-write-test.wasi.wasm:1
- Warn: binary detected: packages/core/python/itkwasm/test/input/mesh-to-poly-data.wasi.wasm:1
- Warn: binary detected: packages/core/python/itkwasm/test/input/poly-data-to-mesh.wasi.wasm:1
- Warn: binary detected: packages/core/python/itkwasm/test/input/pthreads-test.wasi.wasm:1
- Warn: binary detected: packages/core/python/itkwasm/test/input/stdout-stderr-test.wasi.wasm:1
- Warn: binary detected: packages/core/python/itkwasm/test/input/transform-read-write-test.wasi.wasm:1
- Warn: binary detected: packages/core/typescript/itk-wasm/test/pipelines/bindgen-interface-types-pipeline/python/itkwasm-bindgen-interface-types-test-wasi/itkwasm_bindgen_interface_types_test_wasi/wasm_modules/bindgen-interface-types-test.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/apply-presentation-state-to-image.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/read-dicom-encapsulated-pdf.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/read-image-dicom-file-series.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/read-overlapping-segmentation.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/read-segmentation.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/structured-report-to-html.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/structured-report-to-text.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/write-multi-segmentation.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/write-overlapping-segmentation.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/write-rt-struct.wasi.wasm:1
- Warn: binary detected: packages/dicom/python/itkwasm-dicom-wasi/itkwasm_dicom_wasi/wasm_modules/write-segmentation.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/hdf5-read-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/hdf5-write-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/mat-read-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/mat-write-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/mnc-read-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/mnc-write-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/txt-read-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/txt-write-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/wasm-read-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/wasm-write-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/wasm-zstd-read-transform.wasi.wasm:1
- Warn: binary detected: packages/transform-io/python/itkwasm-transform-io-wasi/itkwasm_transform_io_wasi/wasm_modules/wasm-zstd-write-transform.wasi.wasm:1
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/clang-format-linter.yml:10: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/clang-format-linter.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/clang-format-linter.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/clang-format-linter.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:127: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:133: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:139: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:162: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/documentation.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/documentation.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:97: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/documentation.yml:116: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/documentation.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:68: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:108: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:111: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:221: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:224: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:229: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:236: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:240: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:303: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:306: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:311: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:317: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:322: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:135: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:140: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:167: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:170: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:175: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:181: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:186: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:267: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:270: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:275: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:282: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:286: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/examples.yml:354: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/examples.yml:356: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/examples.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/javascript-typescript.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/javascript-typescript.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/javascript-typescript.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/javascript-typescript.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/javascript-typescript.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/javascript-typescript.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/javascript-typescript.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/javascript-typescript.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/native.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/native.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/native.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/native.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:85: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/playwright.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/playwright.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:100: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:154: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/playwright.yml:157: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/playwright.yml:162: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/playwright.yml:170: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:172: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/playwright.yml:209: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/playwright.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-checks.yml:9: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/pr-checks.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-checks.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/pr-checks.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-checks.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/pr-checks.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/python-wasm.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/python-wasm.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/python-wasm.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/python-wasm.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/python-wasm.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/python-wasm.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/python-wasm.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/python-wasm.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/python-wasm.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/python-wasm.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/python-wasm.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/python-wasm.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/python-wasm.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/python-wasm.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/toolchains.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/toolchains.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/toolchains.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/toolchains.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/toolchains.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/toolchains.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/toolchains.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/toolchains.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/toolchains.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/toolchains.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/toolchains.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/toolchains.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/wasi.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/wasi.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/wasi.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/wasi.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/wasi.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/wasi.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/wasi.yml:29: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/wasi.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/wasi.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/InsightSoftwareConsortium/ITK-Wasm/wasi.yml/main?enable=pin
- Warn: containerImage not pinned by hash: src/docker/itk-wasm-base/Dockerfile:3
- Warn: containerImage not pinned by hash: src/docker/itk-wasm/Dockerfile:5
- Warn: npmCommand not pinned by hash: src/docker/itk-wasm-base/Dockerfile:21
- Warn: pipCommand not pinned by hash: .github/workflows/documentation.yml:34
- Warn: pipCommand not pinned by hash: .github/workflows/documentation.yml:35
- Warn: pipCommand not pinned by hash: .github/workflows/documentation.yml:109
- Warn: npmCommand not pinned by hash: .github/workflows/examples.yml:146
- Warn: npmCommand not pinned by hash: .github/workflows/playwright.yml:21
- Warn: npmCommand not pinned by hash: .github/workflows/playwright.yml:44
- Warn: npmCommand not pinned by hash: .github/workflows/playwright.yml:68
- Info: 3 out of 63 GitHub-owned GitHubAction dependencies pinned
- Info: 2 out of 47 third-party GitHubAction dependencies pinned
- Info: 0 out of 5 npmCommand dependencies pinned
- Info: 0 out of 3 pipCommand dependencies pinned
- Info: 0 out of 2 containerImage dependencies pinned
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 28 are checked with a SAST tool
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
12 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx
- Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-8hc4-vh64-cxmj
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-c76h-2ccp-4975
- Warn: Project is vulnerable to: GHSA-cxrh-j4jr-qwg3
- Warn: Project is vulnerable to: GHSA-4vvj-4cpr-p986
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Score
3.8
/10
Last Scanned on 2025-07-09T17:42:54Z
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More