npmpackage.info

Gathering detailed insights and metrics for @mwcp/cache

@mwcp/cache

41.0.0

MIT

TypeScript

Installations

npm install @mwcp/cache

Pull Requests

Open

0

Total

140

Closed

100

Merged

40

Issues

Open

0

Total

3

Closed

3

Releases

1,373

v41.0.0

Published on 21 Nov 2024

v40.1.1

Published on 12 Nov 2024

v40.1.0

Published on 10 Nov 2024

v40.0.0

Published on 10 Nov 2024

v39.3.0

Published on 06 Nov 2024

v39.2.0

Published on 04 Nov 2024

View all 1,373 releases

Developer

waitingsong

Developer Guide

BETA

Module System

ESM

Min. Node Version

>=18.12.0

Typescript Support

Yes

Node Version

22.11.0

NPM Version

lerna/8.1.9/node@v22.11.0+x64 (linux)

Statistics

2 Stars

904 Commits

3 Watching

4 Branches

1 Contributors

Updated on 21 Nov 2024

Languages

TypeScript (94.27%)

Shell (3.46%)

JavaScript (2.27%)

Total Downloads

Cumulative downloads

Total Downloads

32,414

Last day

Compared to previous day

Last week

-37%

Compared to previous week

Last month

142.6%

1,230

Compared to previous month

Last year

-7%

15,620

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

@midwayjs/cache-manager @midwayjs/info @midwayjs/logger @mwcp/otel @mwcp/share @waiting/shared-core

Versions

Midway.js Components

Note

ESM build only, requires @midwayjs >= 3.15 and set "type": "module" in packages.json

Packages

Package	Version
`share`
`ali-oss`
`cache`
`jwt`
`otel`

Initialize and install dependencies

Install global deps for development

1npm i -g c8 lerna madge rollup tsx zx

Update package

1npm i && npm run build

Test

Use npm run lint to check code style.
Use npm run test to run unit test.

Clan or Purge

1# clean build dist, cache and build
2npm run clean
3# clean and remove all node_modules
4npm run purge

Note

Run npm run clean before npm run build, if any file under typescript outDir folder was deleted manually.
Default publish registry is NPM, configurated in file lerna.json
Any commands above (such as npm run build) running in Git-Bash under Windows OS

License

MIT

Languages

No vulnerabilities found.

10

Maintained

Determines if the project is "actively maintained".

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

10

License

Determines if the project has defined a license.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

SAST

Determines if the project uses static code analysis.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 0

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/nodejs.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/nodejs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/nodejs.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/nodejs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/nodejs.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/nodejs.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/nodejs.yml:160: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/nodejs.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-manual-publish.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/npm-manual-publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-manual-publish.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/npm-manual-publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-manual-publish.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/npm-manual-publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish-wo-test.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/npm-publish-wo-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish-wo-test.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/npm-publish-wo-test.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/npm-publish-wo-test.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/waitingsong/midway-components/npm-publish-wo-test.yml/main?enable=pin
Warn: npmCommand not pinned by hash: .scripts/add-mwcp.sh:95
Warn: npmCommand not pinned by hash: .scripts/add-pkg.sh:91
Warn: npmCommand not pinned by hash: .scripts/purge.sh:11
Warn: npmCommand not pinned by hash: .github/workflows/nodejs.yml:84
Warn: npmCommand not pinned by hash: .github/workflows/nodejs.yml:85
Warn: npmCommand not pinned by hash: .github/workflows/npm-manual-publish.yml:101
Warn: npmCommand not pinned by hash: .github/workflows/npm-manual-publish.yml:102
Warn: npmCommand not pinned by hash: .github/workflows/npm-publish-wo-test.yml:87
Warn: npmCommand not pinned by hash: .github/workflows/npm-publish-wo-test.yml:88
Info: 0 out of 9 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 1 third-party GitHubAction dependencies pinned
Info: 1 out of 10 npmCommand dependencies pinned

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

Score

4.4

/10

Last Scanned on 2024-11-18

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More