npmpackage.info

@logtail/core

Better Stack JavaScript client

0.5.2

ISC

TypeScript

Installations

npm install @logtail/core

Pull Requests

Open

0

Total

65

Closed

4

Merged

61

Issues

Open

14

Total

62

Closed

48

Releases

v0.5.2

Published on 09 Oct 2024

v0.5.1

Published on 08 Aug 2024

v0.5.0

Published on 07 Aug 2024

v0.4.23

Published on 31 Jul 2024

v0.4.22

Published on 03 Jun 2024

v0.4.21

Published on 08 Mar 2024

View all 28 releases

Developer

logtail

Developer Guide

BETA

Module System

CommonJS

Min. Node Version

Typescript Support

Yes

Node Version

20.3.0

NPM Version

lerna/8.1.5/node@v20.3.0+arm64 (darwin)

Statistics

54 Stars

216 Commits

13 Forks

4 Watching

7 Branches

14 Contributors

Updated on 24 Oct 2024

Languages

TypeScript (95.98%)

JavaScript (4.02%)

Total Downloads

Cumulative downloads

Total Downloads

3,936,274

Last day

1.5%

12,081

Compared to previous day

Last week

0.7%

64,006

Compared to previous week

Last month

2.5%

278,768

Compared to previous month

Last year

92.8%

2,436,027

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@logtail/tools @logtail/types serialize-error

Versions

Better Stack JavaScript client

📣 Logtail is now part of Better Stack. Learn more ⇗

Experience SQL-compatible structured log management based on ClickHouse. Learn more ⇗

Documentation

Getting started ⇗

Need help?

Please let us know at hello@betterstack.com. We're happy to help!

ISC license, contributing guidelines, example project

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

5

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

4

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

3

Maintained

Determines if the project is "actively maintained".

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/end-to-end.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/logtail/logtail-js/end-to-end.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/end-to-end.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/logtail/logtail-js/end-to-end.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/end-to-end.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/logtail/logtail-js/end-to-end.yml/master?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/end-to-end.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/logtail/logtail-js/end-to-end.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/logtail/logtail-js/lint.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/logtail/logtail-js/lint.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/logtail/logtail-js/tests.yml/master?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/tests.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/logtail/logtail-js/tests.yml/master?enable=pin
Warn: npmCommand not pinned by hash: .github/workflows/lint.yml:35
Warn: npmCommand not pinned by hash: .github/workflows/tests.yml:45
Info: 0 out of 7 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 1 third-party GitHubAction dependencies pinned
Info: 0 out of 2 npmCommand dependencies pinned

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

SAST

Determines if the project uses static code analysis.

Score

4

/10

Last Scanned on 2024-11-18

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More