Gathering detailed insights and metrics for @octokit/plugin-request-log
Gathering detailed insights and metrics for @octokit/plugin-request-log
Log all requests and request errors
Installations
npm install @octokit/plugin-request-logDeveloper Guide
BETA
Typescript
Yes
Module System
ESM
Min. Node Version
>= 20
Node Version
22.15.0
NPM Version
10.9.2
Score
98.8
Supply Chain
88.8
Quality
80.1
Maintenance
100
Vulnerability
100
License
Releases
17
Languages
2
TypeScript
JavaScript
TypeScript (68.58%)
JavaScript (31.42%)
Developer
octokit
Download Statistics
Total Downloads
1,120,033,158
Last Day
418,411
Last Week
7,199,856
Last Month
31,042,685
Last Year
310,842,794
GitHub Statistics
MIT License
8 Stars
427 Commits
20 Forks
6 Watchers
5 Branches
31 Contributors
Updated on May 20, 2025
Maintainers
1
Package Meta Information
Latest Version
6.0.0
Package Id
@octokit/plugin-request-log@6.0.0
Unpacked Size
5.78 kB
Size
2.76 kB
File Count
7
NPM Version
10.9.2
Node Version
22.15.0
Published on
May 20, 2025
Total Downloads
Cumulative downloads
Total Downloads
1,120,033,158
Last Day
-14.4%
418,411
Compared to previous day
Last Week
-9.4%
7,199,856
Compared to previous week
Last Month
4.9%
31,042,685
Compared to previous month
Last Year
23.1%
310,842,794
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
plugin-request-log.js
Log all requests and request errors
Usage
| Browsers |
Load
|
|---|---|
| Node |
Install with
|
[!IMPORTANT] As we use conditional exports, you will need to adapt your
tsconfig.jsonby setting"moduleResolution": "node16", "module": "node16".See the TypeScript docs on package.json "exports".
See this helpful guide on transitioning to ESM from @sindresorhus
1const MyOctokit = Octokit.plugin(requestLog); 2const octokit = new MyOctokit({ auth: "secret123" }); 3 4octokit.request("GET /"); 5// logs "GET / - 200 in 123ms 6 7octokit.request("GET /oops"); 8// logs "GET / - 404 in 123ms
In order to log all request options, the log.debug option needs to be set. We recommend the console-log-level package for a configurable log level
1import consoleLogLevel from "console-log-level";
2const octokit = new MyOctokit({
3 log: consoleLogLevel({
4 auth: "secret123",
5 level: "info",
6 }),
7});Contributing
See CONTRIBUTING.md
License
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
all changesets reviewed
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
packaging workflow detected
Details
- Info: Project packages its releases by way of GitHub Actions.: .github/workflows/release.yml:14
Reason
security policy file detected
Details
- Info: security policy file detected: SECURITY.md:1
- Info: Found linked content: SECURITY.md:1
- Warn: One or no descriptive hints of disclosure, vulnerability, and/or timelines in security policy
- Info: Found text in security policy: SECURITY.md:1
Reason
SAST tool detected but not run on all commits
Details
- Info: SAST configuration detected: CodeQL
- Warn: 25 commits out of 30 are checked with a SAST tool
Reason
1 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
Reason
dependency not pinned by hash detected -- score normalized to 5
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/add_to_octokit_project.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/add_to_octokit_project.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/add_to_octokit_project.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/add_to_octokit_project.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/codeql.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/codeql.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/codeql.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/immediate-response.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/immediate-response.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/immediate-response.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/immediate-response.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/release.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/test.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/test.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-prettier.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/update-prettier.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-prettier.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/octokit/plugin-request-log.js/update-prettier.yml/main?enable=pin
- Info: 5 out of 16 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 2 third-party GitHubAction dependencies pinned
- Info: 4 out of 4 npmCommand dependencies pinned
Reason
2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: no topLevel permission defined: .github/workflows/add_to_octokit_project.yml:1
- Warn: no topLevel permission defined: .github/workflows/codeql.yml:1
- Warn: topLevel 'contents' permission set to 'write': .github/workflows/release.yml:8
- Warn: no topLevel permission defined: .github/workflows/test.yml:1
- Warn: no topLevel permission defined: .github/workflows/update-prettier.yml:1
- Info: no jobLevel write permissions found
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Score
6.6
/10
Last Scanned on 2025-06-30
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More