npmpackage.info

Gathering detailed insights and metrics for @maxmind/geoip2-node

Other packages similar to @maxmind/geoip2-node

node-geoip2

0.11.0

Maxmind GeoIP2 database reader for geolocating ip addresses. Fast native implementation by wrapping libmaxminddb.

salmanh-geoip2-node

2.2.3

Node.js API for GeoIP2 webservice client and database reader

geoip2-lite

1.0.11

MaxMind's GeoIP2 API implementation on Native NodeJS

node-geolite2

0.1.7

This is the pure Node API for reading country and city information from geolite2 database file based on node-maxmind-db

Gathering detailed insights and metrics for @maxmind/geoip2-node

@maxmind/geoip2-node

Node.js API for GeoIP2 webservice client and database reader

5.0.0

231

Apache-2.0

TypeScript

16.14 kB

11,641,740 7.8

Installations

npm install @maxmind/geoip2-node

Developer Guide

BETA

Typescript

Yes

Module System

CommonJS

Node Version

20.10.0

NPM Version

10.2.3 Score

98.9

Supply Chain

99.1

Quality

81.5

Maintenance

100

Vulnerability

98.9

License

Pull Requests

Open

6

Total

1,378

Closed

470

Merged

902

Issues

Open

1

Total

26

Closed

25

Releases

v5.0.0

Published on 05 Dec 2023

v4.2.0

Published on 27 Jul 2023

v4.1.0

Published on 30 Jun 2023

v4.0.0

Published on 17 May 2023

v3.5.0

Published on 28 Oct 2022

v3.4.0

Published on 11 Jan 2022

View all 34 releases

Contributors

View all 46 contributors

Languages

TypeScript

JavaScript

Shell

TypeScript (96.53%)

JavaScript (2.07%)

Shell (1.4%)

Developer

maxmind

Download Statistics

Total Downloads

11,641,740

Last Day

19,899

Last Week

81,702

Last Month

342,882

Last Year

3,818,895

GitHub Statistics

231 Stars

2,013 Commits

24 Forks

19 Watching

21 Branches

46 Contributors

Bundle Size

52.49 kB

Minified

16.14 kB

Minified + Gzipped

Bundlephobia

Maintainers

Package Meta Information

Latest Version

5.0.0

Package Id

@maxmind/geoip2-node@5.0.0

Unpacked Size

58.12 kB

Size

15.37 kB

File Count

NPM Version

10.2.3

Node Version

20.10.0

Publised On

05 Dec 2023

Total Downloads

Cumulative downloads

Total Downloads

11,641,740

Last day

6.2%

19,899

Compared to previous day

Last week

-10.7%

81,702

Compared to previous week

Last month

14.7%

342,882

Compared to previous month

Last year

26.6%

3,818,895

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Versions

Steps for releasing:

Review open issues and PRs to see if any can easily be fixed, closed, or merged.
Bump copyright year in README.md, if necessary.
Review CHANGELOG.md for completeness and correctness. Update its release date.
Set the new version in package.json.
Create a release PR containing the updates relating to any of the steps above.
Ensure that the release PR is merged into main.
With main checked out, run npm publish. This will generate the docs, deploy the docs, and publish the package to NPM.
Verify the release on NPM.
Tag the release, e.g. git tag -a v1.2.3 -m v1.2.3
Push the tag: git push --tags
Create the release on GitHub. You can use the web interface.

Set up pre-commit hooks

npm run setup to install husky pre-commit hooks

No vulnerabilities found.

10

Maintained

Determines if the project is "actively maintained".

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

10

License

Determines if the project has defined a license.

10

SAST

Determines if the project uses static code analysis.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

9

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

5

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 5

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/codeql-analysis.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lint.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/lint.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/zizmor.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/zizmor.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/zizmor.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/maxmind/GeoIP2-node/zizmor.yml/main?enable=pin
Warn: downloadThenRun not pinned by hash: bin/install-precious:17
Info: 0 out of 9 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 1 third-party GitHubAction dependencies pinned
Info: 0 out of 1 downloadThenRun dependencies pinned
Info: 4 out of 4 npmCommand dependencies pinned

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

Score

7.8

/10

Last Scanned on 2025-01-27

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

Other packages similar to @maxmind/geoip2-node

@maxmind/geoip2-node

Installations

Developer Guide

Yes

CommonJS

20.10.0

10.2.3

Score

Pull Requests

6

1,378

470

902

Issues

1

26

25

Releases

Contributors

Languages

Developer

Download Statistics

GitHub Statistics

Bundle Size

52.49 kB

16.14 kB

Maintainers

Package Meta Information

Total Downloads

11,641,740

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Dev Dependencies

Steps for releasing:

Set up pre-commit hooks

10

10

10

10

10

10

10

9

5

0

0

0

7.8

/10

Other packages similar to @maxmind/geoip2-node