npmpackage.info

Gathering detailed insights and metrics for @keyv/compress-lz4

Gathering detailed insights and metrics for @keyv/compress-lz4

@keyv/compress-lz4 - 1.0.1 | npmpackage.info

@keyv/compress-lz4

Simple key-value storage with support for multiple backends

1.0.1

2,929

MIT

TypeScript

8.01 kB

Installations

npm install @keyv/compress-lz4

Developer Guide

BETA

Typescript

Yes

Module System

ESM

Min. Node Version

>= 18

Node Version

22.12.0

NPM Version

11.4.2

Score

66

Supply Chain

72.7

Quality

84

Maintenance

100

Vulnerability

99.6

License

Pull Requests

Open

0

Total

1,179

Closed

54

Merged

1,125

Issues

Open

0

Total

310

Closed

310

Releases

80

2025-07-09

Updated on Jul 09, 2025

2025-06-21

Updated on Jun 21, 2025

2025-06-09

Updated on Jun 10, 2025

2025-05-17

Updated on May 17, 2025

2025-05-03

Updated on May 03, 2025

2025-04-20

Updated on Apr 20, 2025

View All 80 releases

Languages

4

TypeScript

Shell

CSS

JavaScript

TypeScript (99.28%)

Shell (0.32%)

CSS (0.27%)

JavaScript (0.12%)

Developer

Download Statistics

Total Downloads

0

Last Day

0

Last Week

0

Last Month

0

Last Year

0

GitHub Statistics

MIT License

2,929 Stars

1,659 Commits

179 Forks

20 Watchers

2 Branches

75 Contributors

Updated on Jul 13, 2025

Maintainers

1

View All 75 Contributors

Package Meta Information

Latest Version

1.0.1

Package Id

@keyv/compress-lz4@1.0.1

Unpacked Size

8.01 kB

Size

2.98 kB

File Count

7

NPM Version

11.4.2

Node Version

22.12.0

Published on

Jul 09, 2025

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

0%

NaN

Compared to previous day

Last Week

0%

NaN

Compared to previous week

Last Month

0%

NaN

Compared to previous month

Last Year

0%

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

2

lz4-napi @keyv/serialize

Peer Dependencies

1

Dev Dependencies

6

@vitest/coverage-v8 c8 rimraf vitest xo @keyv/test-suite

@keyv/compress-lz4

lz4 compression for Keyv

lz4 compression for Keyv.

lz4 is a data compression algorithm that is designed to be fast and efficient and is provided by the package lz4-napi.

Install

1npm install --save keyv @keyv/compress-lz4

Usage

1import Keyv from 'keyv';
2import KeyvLz4 from '@keyv/compress-lz4';
3
4const keyv = new Keyv({store: new Map(), compression: new KeyvLz4()});
5

API

@keyv/compress-lz4([options])

options

All options for @keyv/compress-lz4 are based on the package lz4-napi.

License

MIT © Jared Wray

Empty State

No vulnerabilities found.

10

Maintained

Determines if the project is "actively maintained".

10

Security-Policy

Determines if the project has published a security policy.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

License

Determines if the project has defined a license.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

SAST

Determines if the project uses static code analysis.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

Fuzzing

Determines if the project uses fuzzing.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codecov.yaml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/codecov.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codecov.yaml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/codecov.yaml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/codecov.yaml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/codecov.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-website.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/deploy-website.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-website.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/deploy-website.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/deploy-website.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/deploy-website.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yaml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/tests.yaml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yaml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/jaredwray/keyv/tests.yaml/main?enable=pin
Warn: containerImage not pinned by hash: packages/postgres/Dockerfile.ssl:1: pin your Docker image by updating postgres:latest to postgres:latest@sha256:3962158596daaef3682838cc8eb0e719ad1ce520f88e34596ce8d5de1b6330a1
Warn: npmCommand not pinned by hash: .github/workflows/codecov.yaml:25
Warn: npmCommand not pinned by hash: .github/workflows/deploy-website.yml:27
Warn: npmCommand not pinned by hash: .github/workflows/tests.yaml:28
Info: 0 out of 10 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 2 third-party GitHubAction dependencies pinned
Info: 0 out of 1 containerImage dependencies pinned
Info: 0 out of 3 npmCommand dependencies pinned

Score

5.6

/10

Last Scanned on 2025-07-07

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.