npmpackage.info

Gathering detailed insights and metrics for @oceanprotocol/lib

Other packages similar to @oceanprotocol/lib

@oceanprotocol/react

0.6.2

React hooks & components on top of @oceanprotocol/lib

@oceanprotocol/uploader-ui-lib

0.2.10

Ocean Uploader component library

@oceanprotocol/use-dark-mode

2.4.3

A custom React Hook to help you implement a "dark mode" component.

@oceanprotocol/dbs-ui-lib

0.1.0

Ocean Protocol DBS component library

Gathering detailed insights and metrics for @oceanprotocol/lib

@oceanprotocol/lib - 4.2.1 | npmpackage.info

@oceanprotocol/lib

🦑 Ocean Protocol JavaScript library to privately & securely publish, exchange, and consume data.

4.2.1

112

Apache-2.0

TypeScript

722.79 kB

151,446 5.4

Installations

npm install @oceanprotocol/lib

Developer Guide

BETA

Typescript

Yes

Module System

ESM

Node Version

20.19.2

NPM Version

10.8.2 Score

35.3

Supply Chain

72.7

Quality

83.6

Maintenance

Vulnerability

85.7

License

Pull Requests

Open

7

Total

1,588

Closed

338

Merged

1,243

Issues

Open

5

Total

360

Closed

355

Releases

221

Release 4.2.1

v4.2.1

Updated on Jun 25, 2025

Release 4.2.0

v4.2.0

Updated on Jun 16, 2025

Release 4.1.4

v4.1.4

Updated on Jun 11, 2025

Release 4.1.3

v4.1.3

Updated on Jun 02, 2025

Release 4.1.2

v4.1.2

Updated on May 27, 2025

v4.1.1

Updated on May 26, 2025

View All 221 releases

Languages

TypeScript

Shell

JavaScript

TypeScript (99.11%)

Shell (0.56%)

JavaScript (0.33%)

Developer

oceanprotocol

Download Statistics

Total Downloads

151,446

Last Day

Last Week

500

Last Month

1,808

Last Year

15,350

GitHub Statistics

Apache-2.0 License

112 Stars

3,531 Commits

69 Forks

14 Watchers

30 Branches

41 Contributors

Updated on Jun 25, 2025

Bundle Size

2.83 MB

Minified

722.79 kB

Minified + Gzipped

Bundlephobia

Maintainers

View All 41 Contributors

Package Meta Information

Latest Version

4.2.1

Package Id

@oceanprotocol/lib@4.2.1

Unpacked Size

3.04 MB

Size

582.89 kB

File Count

163

NPM Version

10.8.2

Node Version

20.19.2

Published on

Jun 25, 2025

Total Downloads

Cumulative downloads

Total Downloads

151,446

Last Day

266.7%

Compared to previous day

Last Week

-28.7%

500

Compared to previous week

Last Month

46.9%

1,808

Compared to previous month

Last Year

-67.4%

15,350

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

ocean.js

JavaScript library to privately & securely publish, exchange, and consume data.

With ocean.js, you can:

Publish data services: downloadable files or compute-to-data. Create an ERC721 data NFT for each service, and ERC20 datatoken for access (1.0 datatokens to access).
Sell datatokens for a fixed price. Sell data NFTs.
Transfer data NFTs & datatokens to another owner, and all other ERC721 & ERC20 actions using web3.js etc.

ocean.js is part of the Ocean Protocol toolset.

This is in alpha state. If you run into problems, please open up a new issue.

📚 Prerequisites
🏗 Installation & Usage
🦑 Development
✨ Code Style
👩‍🔬 Testing
- Unit Tests
- Integration Tests
🛳 Production
⬆️ Releases
- Production
- Pre-Releases
🏛 License

📚 Prerequisites

node.js (Install from here)
Docker (Managed as a non-root user)
A Unix based operating system (Mac or Linux)

🏗 Installation & Usage

1npm install @oceanprotocol/lib

Checkout our code examples or compute to data examples to see how you can use ocean.js.
Refer to the Ocean Protocol documentation for more guides and tutorials.
Visit the Ocean Protocol website for general information about Ocean Protocol.
If you have any difficulties or if you have further questions about how to use ocean.js please reach out to us on Discord.
If you notice any bugs or issues with ocean.js please open an issue on github.
Developers using this library should ensure their tsconfig.json includes the necessary options:

{
  "moduleResolution": "node",
  "esModuleInterop": true,
  "allowSyntheticDefaultImports": true
}

If using Next.js, they may need "moduleResolution": "bundler" for better compatibility.

🦑 Development

The project is authored with TypeScript and compiled with tsc.

To start compiler in watch mode:

1npm install
2npm start

✨ Code Style

For linting and auto-formatting you can use from the root of the project:

1# lint all js with eslint
2npm run lint
3
4# auto format all js & css with prettier, taking all configs into account
5npm run format

👩‍🔬 Testing

Test suite for unit & integration tests is setup with Mocha as test runner, and nyc for coverage reporting. A combined coverage report is sent to CodeClimate via the coverage GitHub Actions job.

Running all tests requires running Ocean Protocol components beforehand with Barge, which also runs a ganache-cli instance:

1git clone https://github.com/oceanprotocol/barge
2cd barge
3
4./start_ocean.sh --with-provider2 --no-dashboard --with-c2d

You can then proceed to run in another terminal.

Let ocean.js know where to pickup the smart contract addresses, which has been written out by Barge in this location:

export ADDRESS_FILE="${HOME}/.ocean/ocean-contracts/artifacts/address.json"

Build metadata:

npm run build:metadata

Executing linting, type checking, unit, and integration tests with coverage reporting all in one go:

1npm test

Unit Tests

You can execute the unit tests individually with:

1npm run test:unit
2# same thing, but with coverage reporting
3npm run test:unit:cover

Integration Tests

You can execute the integration tests individually with:

1npm run test:integration
2# same thing, but with coverage reporting
3npm run test:integration:cover

Sapphire Integration Tests

We are currently using the live Oasis Sapphire Test network for the integration tests. Please export the PRIVATE_KEY and PRIVATE_KEY_CONSUMER before running the tests.

1export PRIVATE_KEY='0x<YOUR_PRIVATE_KEY>'
2export PRIVATE_KEY_CONSUMER='0x<YOUR_CONSUMER_PRIVATE_KEY>'

Then, you can execute the tests individually with:

1npm run test:sapphire

Note: On macOS, changes to the provider, metadataCache and subgraph URLs are required, as their default barge IPs can not be accessed due to network constraints on macOS. Instead use http://127.0.0.1 for each direct call to the mentioned services, but keep the internal provider URL (http://172.15.0.4:8030) hardcoded inside all DDO's serviceEndpoint, and when calling nft.setMetadata().

🛳 Production

To create a production build, run from the root of the project:

1npm run build

⬆️ Releases

Releases are managed semi-automatically. They are always manually triggered from a developer's machine with release scripts.

Production

From a clean main branch you can run the release task bumping the version accordingly based on semantic versioning:

1npm run release

The task does the following:

bumps the project version in package.json, package-lock.json
auto-generates and updates the CHANGELOG.md file from commit messages
creates a Git tag
commits and pushes everything
creates a GitHub release with commit messages as description
Git tag push will trigger a GitHub Action workflow to do a npm release

For the GitHub releases steps a GitHub personal access token, exported as GITHUB_TOKEN is required. Setup

Pre-Releases

For pre-releases, this is required for the first one like v0.18.0-next.0:

1./node_modules/.bin/release-it major|minor|patch --preRelease=next

Further releases afterwards can be done with npm run release again and selecting the appropriate next version, in this case v0.18.0-next.1 and so on.

🏛 License

Copyright ((C)) 2023 Ocean Protocol Foundation

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

   http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Maintained

Determines if the project is "actively maintained".

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

10

Security-Policy

Determines if the project has published a security policy.

6

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

4

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

Reason

dependency not pinned by hash detected -- score normalized to 4

Details

Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:178: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:193: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:194: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:198: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:214: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:215: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:218: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:221: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:233: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:234: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:239: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/ci.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/publish.yml/main?enable=pin
Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/publish.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/oceanprotocol/ocean.js/publish.yml/main?enable=pin
Info: 0 out of 24 GitHub-owned GitHubAction dependencies pinned
Info: 0 out of 1 third-party GitHubAction dependencies pinned
Info: 5 out of 5 npmCommand dependencies pinned

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Fuzzing

Determines if the project uses fuzzing.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

5.4

/10

Last Scanned on 2025-06-23

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

Other packages similar to @oceanprotocol/lib

Other packages similar to @oceanprotocol/lib

@oceanprotocol/lib

Installations

Developer Guide

Yes

ESM

20.19.2

10.8.2

Score

Pull Requests

7

1,588

338

1,243

Issues

5

360

355

Releases

Languages

Developer

Download Statistics

GitHub Statistics

Bundle Size

2.83 MB

722.79 kB

Maintainers

Package Meta Information

Total Downloads

151,446

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Peer Dependencies

Dev Dependencies

ocean.js

📚 Prerequisites

🏗 Installation & Usage

🦑 Development

✨ Code Style

👩‍🔬 Testing

Unit Tests

Integration Tests

Sapphire Integration Tests

🛳 Production

⬆️ Releases

Production

Pre-Releases

🏛 License

10

10

10

10

10

6

4

0

0

0

0

0

5.4

/10